i want to setup a proxy server using the X86 RouterOS software on a machine
currently all our traffic flows out an RB1100.
I want to plaug this proxy into that router and have all the relevant data be diverted to the proxy
how would i go about setting up this and the divert
use a firewall rule to redirect all http trafic to proxy server on your 1100, then on the web proxy server settings, specify the ip address of the proxy server (x86) machine in the parents proxy and the port it will communicate on.
I think you can also do a direct nat rule from the firewall to the ip address of the parent proxy server using redirect to dst-nat address and specify the port under action. you can try any of this, the first works for me and I have not try the second one but it should work.
i think i like the first one better. as the RB1100 is still giving the internet connection
the second feels like i have to tell the x86 proxy how to connect to the net and not get caught up in its own firewall rule.
i was thinking about using the first idea myself but having never done this before i felt i’d ask advice first.
thanks for the help
okay, just a quick understanding on something.
I’m gonna redirect all port 80 traffic from the incoming int to port 8080 which the proxy server is listening to ont he same router.
that proxy server will connect to the parent proxy which is a dedi machine on a different int.
now if i understand all this right i’ll have to make sure that dedi proxy know how to get back to the internet or the whole system will fail, am i correct in this thinking
Edit:
Another thing, do i need to faff about with the Access list in the web proxy
Yes, if the proxy server has no access to the internet, then no work is done.
The access list is for filtering or controling what is allowed by the user and what is not alloewd, eg site blocking, ip address blocking using from having access via the proxy server. wether set or not, proxy works. if nothing is specified, it allow all request redirected to it.