Non-transparent Squid install with IP Bypass
-
How would I go about bypassing some subnets for squid if I have port 80 forwarded to squid through a NAT policy? I'm not using transparency so that I can get Ident data logged.There are four subnets that I need to bypass the proxy for, but the port forwarding policy that I have to push outbound port-80 traffic to Squid is also in an area where I cannot seem to get a policy to have precedence over it. I tried creating a policy from LAN to the subnets for port-80, and redirected to the same subnets, but this does not work.
I'm just not sure how to manually do a proxy bypass. Ideas?
-
Have a look at /usr/local/etc/squid/squid.conf
# Allow local network(s) on interface(s) acl localnet srcĀ 192.168.1.0/255.255.255.0
Here you could specify which subnets should use squid and which would (hopefully) automatically bypass.
-
I'll give it a try. Thanks.