<html>
  <head>
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
  </head>
  <body>
    <p>Thank you!! That was a bit of help.  Got me thinking .  Squid
      access log is loaded with:  TCP_DENIED/403.  Now going on a trip
      down that rabbit hole.</p>
    <p>Don Thrash</p>
    <p><br>
    </p>
    <div class="moz-cite-prefix">On 6/10/2023 4:23 PM, Boris Borisov via
      Ale wrote:<br>
    </div>
    <blockquote type="cite"
cite="mid:CABo2fvBN=k72zKoCgX2xCFqSJiP1p=fn1Jd=N2WMeAQNi1-RQQ@mail.gmail.com">
      <meta http-equiv="content-type" content="text/html; charset=UTF-8">
      <div dir="auto">The old fashion way.
        <div dir="auto"><br>
        </div>
        <div dir="auto">
          <pre style="font-family:"courier new",courier,mono;font-size:x-small;margin-top:0.4em;margin-bottom:0px">iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE</pre>
          <pre style="font-family:"courier new",courier,mono;font-size:x-small;margin-top:0.4em;margin-bottom:0px">
</pre>
          <pre style="font-family:"courier new",courier,mono;font-size:x-small;margin-top:0.4em;margin-bottom:0px"><pre style="font-family:"courier new",courier,mono;margin-top:0.4em;margin-bottom:0px">echo 1 > /proc/sys/net/ipv4/ip_forward</pre><pre style="font-family:"courier new",courier,mono;margin-top:0.4em;margin-bottom:0px">
</pre></pre>
        </div>
        <div class="gmail_quote" dir="auto">
          <div dir="ltr" class="gmail_attr">
            <pre style="font-size:x-small;font-family:"courier new",courier,mono;margin-top:0.4em;margin-bottom:0px">
</pre>
          </div>
          <div dir="ltr" class="gmail_attr"> instead eth0 there is the
            name of your wifi device</div>
          <div dir="ltr" class="gmail_attr"><br>
          </div>
          <div dir="ltr" class="gmail_attr">.<<a
              href="mailto:bugyatl@gmail.com" moz-do-not-send="true"
              class="moz-txt-link-freetext">bugyatl@gmail.com</a>>
            wrote:<br>
          </div>
          <blockquote class="gmail_quote" style="margin:0 0 0
            .8ex;border-left:1px #ccc solid;padding-left:1ex">
            <div dir="auto">When you say proxy server do you mean you
              running proxy software on it or you just using it as
              getaway?</div>
            <br>
            <div class="gmail_quote">
              <div dir="ltr" class="gmail_attr">On Sat, Jun 10, 2023,
                20:56 Don Thrash via Ale <<a
                  href="mailto:ale@ale.org" target="_blank"
                  rel="noreferrer" moz-do-not-send="true"
                  class="moz-txt-link-freetext">ale@ale.org</a>>
                wrote:<br>
              </div>
              <blockquote class="gmail_quote" style="margin:0 0 0
                .8ex;border-left:1px #ccc solid;padding-left:1ex">Hi
                Guys! My name is Don Thrash. I have been using Linux for
                quite a <br>
                while but the head isn't what it used to be. So I am
                looking for a <br>
                little help.  I am setting up a proxy server on the
                following machine.  <br>
                I had it working a week ago.  Now I am totally
                confused.  The issue is <br>
                the proxy client does not get routed to the networks
                (local or <br>
                internet). Ping of <a href="http://google.com"
                  rel="noreferrer noreferrer noreferrer" target="_blank"
                  moz-do-not-send="true">google.com</a> from the client
                returns the correct ip <br>
                address, but the ping returns timed out.  Typing in the
                ip returns timed <br>
                out.  The client is a Windows 10 box, I also tried my
                Ubuntu laptop with <br>
                the same result.<br>
                <br>
                Ubuntu 22.04.2 LTS (GNU/Linux 5.19.0-43-generic x86_64)<br>
                <br>
                wlx002522451a1f - WiFi from house to shed 192.168.1.0<br>
                <br>
                enp0s25 - Wired shed network - 10.42.0.0<br>
                <br>
                dont@Shed2:~$ route -n<br>
                Kernel IP routing table<br>
                Destination     Gateway         Genmask         Flags
                Metric Ref    Use <br>
                Iface<br>
                0.0.0.0         192.168.1.1     0.0.0.0         UG   
                600 0        0 <br>
                wlx002522451a1f<br>
                10.42.0.0       0.0.0.0         255.255.255.0   U    
                100 0        0 enp0s25<br>
                192.168.1.0     0.0.0.0         255.255.255.0   U    
                600 0        0 <br>
                wlx002522451a1f<br>
                <br>
                  sudo iptables -L<br>
                [sudo] password for dont:<br>
                Chain INPUT (policy ACCEPT)<br>
                target     prot opt source               destination<br>
                <br>
                Chain FORWARD (policy ACCEPT)<br>
                target     prot opt source               destination<br>
                <br>
                Chain OUTPUT (policy ACCEPT)<br>
                target     prot opt source               destination<br>
                <br>
                Network connections from server work correctly.<br>
                <br>
                  ifconfig<br>
                enp0s25:
                flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu
                1500<br>
                         inet 10.42.0.1  netmask 255.255.255.0 
                broadcast 10.42.0.255<br>
                         inet6 fe80::a88e:9d27:e490:8c8d  prefixlen 64 
                scopeid 0x20<link><br>
                         ether 00:1e:4f:c7:0a:c0  txqueuelen 1000 
                (Ethernet)<br>
                         RX packets 26627  bytes 2224357 (2.2 MB)<br>
                         RX errors 0  dropped 0  overruns 0  frame 0<br>
                         TX packets 14280  bytes 9276316 (9.2 MB)<br>
                         TX errors 0  dropped 0 overruns 0  carrier 0 
                collisions 0<br>
                         device interrupt 21  memory 0xfebe0000-fec00000<br>
                <br>
                lo: flags=73<UP,LOOPBACK,RUNNING>  mtu 65536<br>
                         inet 127.0.0.1  netmask 255.0.0.0<br>
                         inet6 ::1  prefixlen 128  scopeid
                0x10<host><br>
                         loop  txqueuelen 1000  (Local Loopback)<br>
                         RX packets 10037  bytes 912910 (912.9 KB)<br>
                         RX errors 0  dropped 0  overruns 0  frame 0<br>
                         TX packets 10037  bytes 912910 (912.9 KB)<br>
                         TX errors 0  dropped 0 overruns 0  carrier 0 
                collisions 0<br>
                <br>
                wlx002522451a1f:
                flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu
                1500<br>
                         inet 192.168.1.164  netmask 255.255.255.0 
                broadcast 192.168.1.255<br>
                         ether 00:25:22:45:1a:1f  txqueuelen 1000 
                (Ethernet)<br>
                         RX packets 235508  bytes 162967763 (162.9 MB)<br>
                         RX errors 0  dropped 6  overruns 0  frame 0<br>
                         TX packets 183068  bytes 31113448 (31.1 MB)<br>
                         TX errors 0  dropped 0 overruns 0  carrier 0 
                collisions 0<br>
                <br>
                <br>
                _______________________________________________<br>
                Ale mailing list<br>
                <a href="mailto:Ale@ale.org" rel="noreferrer noreferrer"
                  target="_blank" moz-do-not-send="true"
                  class="moz-txt-link-freetext">Ale@ale.org</a><br>
                <a href="https://mail.ale.org/mailman/listinfo/ale"
                  rel="noreferrer noreferrer noreferrer" target="_blank"
                  moz-do-not-send="true" class="moz-txt-link-freetext">https://mail.ale.org/mailman/listinfo/ale</a><br>
                See JOBS, ANNOUNCE and SCHOOLS lists at<br>
                <a href="http://mail.ale.org/mailman/listinfo"
                  rel="noreferrer noreferrer noreferrer" target="_blank"
                  moz-do-not-send="true" class="moz-txt-link-freetext">http://mail.ale.org/mailman/listinfo</a><br>
              </blockquote>
            </div>
          </blockquote>
        </div>
      </div>
      <br>
      <fieldset class="moz-mime-attachment-header"></fieldset>
      <pre class="moz-quote-pre" wrap="">_______________________________________________
Ale mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Ale@ale.org">Ale@ale.org</a>
<a class="moz-txt-link-freetext" href="https://mail.ale.org/mailman/listinfo/ale">https://mail.ale.org/mailman/listinfo/ale</a>
See JOBS, ANNOUNCE and SCHOOLS lists at
<a class="moz-txt-link-freetext" href="http://mail.ale.org/mailman/listinfo">http://mail.ale.org/mailman/listinfo</a>
</pre>
    </blockquote>
  </body>
</html>