Hello guys, I’m new here and I hope enjoy with you.
So, I have the following topology:
mikrotik
ether1 → internet
bridge1 → with IP 172.168.0.1/24, in this bridge I have added the eth2 and eth3, where the eth2 goes to debian running a squid with IP 172.168.0.2/24 and the eth3 goes to my LAN. Also in this bridge I have configured a dhcp server with range 172.168.0.3-172.168.0.4. So, I did a NAT only to my debian server running squid, namely, only the machine that can access the internet is my proxy.
Okay, when I set manually the client’s browser to use proxy 172.168.0.2 I can to access the internet. But now I wanna to do a transparent proxy to not have to go machine by machine setting the proxy manually.
What rule(s) on firewall I must to set of accord with my topology