hi there. i'm not really sure if my title is correct. just wanna ask for help. i have setup an internet gateway server using fedora core 4. on that same server, i setup squid for caching & content filtering. here's what i'm planning to do:
1. the networks 192.168.1.0/24 - 192.168.3.0/24 will be using squid.
2. the network 192.168.5.0/24 will not be using the proxy when it requests for a webpage.
3. all other networks will not be able to browse.
here's my eth1 config on the server: 192.168.0.1/16
ip addresses on windows clients: 192.168.1.x/16, 192.168.2.x/16, 192.168.3.x/16, 192.168.5.x/16
i got numbers 1 & 3 working using squid. i have set in squid that only the networks from .1.0 to .3.0 can use it. i did not enable ip packet forwarding and that's why networks other than the specified range can't browse. my problem is number 2. is there a way that it (the network specified) can bypass the proxy (squid) while 1 and 3 are working? how? if you have suggestions or you have other ways in making a similar setup, please tell me.
You might want to look at transparent proxying your network, where you port forward port 80 to your squid server on networks 192.168.1.0/24 through 192.168.3.0/24, and then just let network 192.168.5.0/24 pass through your linux box.
due to some reasons, i opted not to use transparent proxying. can iptables solve my problem? how?