Netgate SG-1000 microFirewall

Author Topic: 开启squid透明模式下,私有ip的http 80怎样通过ipsec  (Read 2369 times)

0 Members and 1 Guest are viewing this topic.

Offline zzabc007

  • Newbie
  • *
  • Posts: 5
  • Karma: +0/-0
    • View Profile
比如,A (10.0.1.0/24,pfsense 2.1.3) =====IPsec===== B (10.0.2.0/24,pfsense 2.1.3)
 
从A访问B的私有ip各种服务正常(A未使用透明squid 80服务),
从B访问A的私有ip各种服务正常除http(80 port),B开启了透明squid服务,从B telnet A 80 也正常,但http访问A:80不正常(非80端口的http服务正常)。

请问在使用squid(80)服务的情况,怎样可以让访问私有ip通过IPsec到达另一端?

Offline zzabc007

  • Newbie
  • *
  • Posts: 5
  • Karma: +0/-0
    • View Profile
Re: 开启squid透明模式下,私有ip的http 80怎样通过ipsec
« Reply #1 on: May 15, 2014, 02:21:08 am »
已解决!
在squid中设置私有ip不通过就可以了。
Bypass proxy for Private Address Space (RFC 1918) destination   
Do not forward traffic to Private Address Space (RFC 1918) destination through the proxy server but directly through the firewall.