Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    OpenVPN & Squid & Transparent Proxy

    2.0-RC Snapshot Feedback and Problems - RETIRED
    3
    6
    7.9k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      tcharron
      last edited by

      It appears as if my transparent proxy works fine from the LAN interface, however it doesn't appear to proxy stuff coming from our OpenVPN interface.

      What configuration options would need to be set for squid to act as a transparent proxy for OpenVPN networks?

      In my case, my local LAN is 192.168.1.0/24 with OpenVPN clients being on 192.168.2.0/24

      I'm assuming if I had multi real LAN's the squid config would allow binding to any of them.  Do I simply have to add a listen on the 192.168.2.1 address for it to forward all of the traffic coming from the OpenVPN virtual network?

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        You'd probably need to assign the OpenVPN interface as an OPT interface to make that work properly. If the rules don't kick in automatically, you could add your own port forward at that point.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • T
          tcharron
          last edited by

          Is that even possible using OpenVPN virtual interfaces?

          1 Reply Last reply Reply Quote 0
          • jimpJ
            jimp Rebel Alliance Developer Netgate
            last edited by

            They should show up for assignment under Interfaces > (assign)

            Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

            Need help fast? Netgate Global Support!

            Do not Chat/PM for help!

            1 Reply Last reply Reply Quote 0
            • T
              tcharron
              last edited by

              That's my point.  I've never seen the OpenVPN…

              several minutes pass

              Wow, now I feel ubah dumb.  :-D

              By the way..  It's also dumb to go ahead and add it as an OPT interface while remoted in to the system.  :-P

              1 Reply Last reply Reply Quote 0
              • E
                Efonnes
                last edited by

                If you just needed a port forward on OpenVPN and you are only running a single OpenVPN server (or if you want it on all), it is actually now one of the options available on port forwards (available on all NAT rules actually).

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.