Non-transparent Squid install with IP Bypass



  • How would I go about bypassing some subnets for squid if I have port 80 forwarded to squid through a NAT policy? I'm not using transparency so that I can get Ident data logged.There are four subnets that I need to bypass the proxy for, but the port forwarding policy that I have to push outbound port-80 traffic to Squid is also in an area where I cannot seem to get a policy to have precedence over it. I tried creating a policy from LAN to the subnets for port-80, and redirected to the same subnets, but this does not work.

    I'm just not sure how to manually do a proxy bypass. Ideas?



  • Have a look at /usr/local/etc/squid/squid.conf

    # Allow local network(s) on interface(s)
    acl localnet srcĀ  192.168.1.0/255.255.255.0
    

    Here you could specify which subnets should use squid and which would (hopefully) automatically bypass.



  • I'll give it a try. Thanks.


Log in to reply