Bypass Transparent Proxy for one internel IP?

General questions.
dnl
Posts: 375
Joined: June 28th, 2013, 11:03 am

Bypass Transparent Proxy for one internal IP?

Post by dnl » July 9th, 2019, 11:45 am

chojin wrote:
June 25th, 2019, 7:21 pm
H&M wrote:
August 20th, 2015, 8:07 am

For bypassing SQUID for one IP (no matter the destination) add in /etc/sysconfig/firewall.local section start) and another one in section stop). The one in section start uses "-A", the one in section stop uses "-D" (delete).

Code: Select all

#!/bin/sh
case "$1" in
start)
           #Bypass SQUID rule for 192.168.2.2
           iptables -t nat -A CUSTOMPREROUTING -s 192.168.2.2 -j ACCEPT
           ;;
stop)
          #Cancel Bypass SQUID rule for 192.168.2.2
           iptables -t nat -D CUSTOMPREROUTING -s 192.168.2.2 -j ACCEPT
          ;;
reload)
$0 stop
        $0 start
        ## add your 'reload' rules here
        ;;
  *)
        echo "Usage: $0 {start|stop|reload}"
        ;;
esac
I had to change
<dnl changed in example above to save space>
for this to work for me in firewall.local. (the same off course for the -D line)

Could someone confirm that this still the only way to bypass an internal IP address?

I'm having an issue accessing an internal web server directly on port 80 through IPFire (GREEN -> BLUE) and believe the issue is the transparent proxy.

Thank you!
IPFire 2.x (Latest Update) on x86_64 Intel Bay Trail CPU, 4GiB RAM, RED + GREEN + BLUE + ORANGE

Post Reply