Webproxy Transparent?

WebToor · June 6, 2019, 6:11pm

Hello all,

I’m testing Webproxy services on Vyos 1.1.8 on transparent mode but when i check site on client device web sites keep available.
I’ve to configure proxy in web browser to get good way.

My config :

firewall {
all-ping disable
}
interfaces {
ethernet eth0 {
address dhcp
hw-id 08:00:27:61:56:d1
}
ethernet eth1 {
address 172.16.0.1/24
hw-id 08:00:27:35:51:7b
}
loopback lo {
}
}
nat {
source {
rule 1 {
outbound-interface eth0
source {
address 172.16.0.0/24
}
translation {
address masquerade
}
}
}
}
service {
ssh {
listen-address 192.168.1.19
}
webproxy {
cache-size 0
listen-address 172.16.0.1 {
}
url-filtering {
squidguard {
block-category social_networks
block-category adult
local-block facebook.com
redirect-url https://www.google.com
}

domain-name vr.local.labo
host-name vr
login {
    user vyos {
        authentication {
            encrypted-password ****************
            plaintext-password ****************
        }
        level admin
    }
}
name-server 8.8.8.8
    }
}
time-zone Europe/Paris

}

Second question how to redirect UDP - TCP on port 53 to hold DNS request through Virtual Router ?

i find this way :

iptables -t nat -A PREROUTING -i eth1 -p udp --dport 53 -j DNAT --to [LAN IP]
iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 53 -j DNAT --to [LAN IP]

Thanks in advance.

rob · June 11, 2019, 6:27pm

there are many chances since 1.1.8 please update to a rolling release, build it by your own or take a look at the support