Henning Andreseck wrote:
> i want to set up a squid before the m0n0wall. i thougt about deny all
> traffic from my lan (192.168.17.0/24) to the WAN. and allow only the
> proxy. is this right? i'm not shure. can i get direct access for a server?
> maby with opening port 80&21 only for the ip of my server?
> thank you.
This is an old e-mail about mail servers, but should work for squid.
Jonathan De Graeve wrote:
>> Van: Matt Juszczak [mailto:matt at atopia dot net]
>> For a client, we need to redirect all outgoing port 25 connections
>> through the m0n0wall to a specific IP/port on the INTERNAL lan (so in
>> other words, capture all outgoing port 25 connections and redirect
> them to
>> a specific IP on port 25).... this is to force use of a specific SMTP
>> server seamlessly.
>> Is this possible?
> Yes, put this between your nat tags
> <descr>redirect SMTP to LAN SMTP server</descr>