You are not logged in.
I have an arch install that is my lan's gateway to the internet - it connects via an adsl modem. Computers on the lan just use that computer as gateway to the internet. Sometimes my ISP has problems with international links and I recently found that using an external proxy, ie a free proxy on the net, can speed things up significantly when that happens. The problem is that I will have to configure the browsers on my lan to use the proxy and reconfigure when I don't need the proxy any more as international links return to normal. Is there an easy way to set this on the gateway computer so that every browser on the lan would not need to be configured every time?
Last edited by stryder (2009-04-03 09:56:23)
Offline
I think this piece of iptables "code" run on your gateway should help you:
iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 80 -j DNAT --to proxy-box:3128
Replace eth1 with the interface facing your LAN.
I think you need to read a manual for transparent proxy configuration for further information.
!WARNING!: Using an external free proxy is not secure. Your data transferred through the proxy may be traced, logged, spied on, etc.
Last edited by ckristi (2009-04-03 09:26:58)
In love I believe and in Linux I trust
Offline
Thanks ckristi. It works!
I use shorewall to configure iptables. I probably need to read up on that. Or would that iptables command you provided merely add to whatever else shorewall has configured?
I understand that external free proxies are insecure but for now the speed difference (about 10x) cannot be ignored.
Offline
Yes, you can just add it to your shorewall generated script and it should work.
In love I believe and in Linux I trust
Offline