So, the roommate is on yayhooray.com.

It seems that they’re very anti-proxy, as when any proxy-specific header is found, they generate an HTTP 302 error with the IP the request came from – most people would just get a timeout page, really.

They must do it in the code (PHP, I think?) in the site, though, as the rest of the content is actually generated and sent after the header – so not a server config.

Got rid of via header and x-forwarded-for headers and it comes up.

Apparently they have a nemesis.  Guys, this isn’t a super-heroes club.

Previous instructions worked – except it redirected all traffic meant for the actual internal webserver, which meant… well, oops.

Thus.

echo “201 proxy” > /etc/iproute2/rt_tables

ip rule add fwmark 2 table proxy

ip route add default via (squidproxyinternalipaddress) table proxy

iptables -t mangle -A PREROUTING -i vlan0 -p tcp –dport 80 -j MARK –set-mark 2

iptables -t mangle -A PREROUTING -i br0 -p tcp –dport 80 -j MARK –set-mark 2

iptables -t mangle -A PREROUTING -m mark –mark 2 -j ACCEPT
On the squid/server box:

iptables -t nat -A PREROUTING -p tcp -d ! (squidproxyinternalipaddress) –dport 80 -j REDIRECT –to-port 3128

Except yayhooray.com doesn’t seem to work.  It redirects to the external IP somehow.  Must see.

I decided I’d finally try to get Squid/redirect/filtering/blocking going for wireless this week.  Mainly because the stepson has figured out that formatting/reinstalling an OS on his laptop is the easier way past the client-side filtering software.

So.

WRT54G – GL, actually, bought it from ncix.com, fast fast shipping, excellent price, can’t complain.  Got it specifically to use aftermarket firmware without incident.  Tried DD-WRT, and it hung.  Used Open-WRT.  Works perfectly, updated to webif2/xwrt.  That was stable for a couple of months.

Squid was already installed on the server.  Server has its own connection out, and the router has its own as well.  (Separate PPPoE logins, through the same switch).

Played for a couple of days with iptables rules on the router.  When I finally got it redirecting traffic at first, I got ‘Invalid URL’ errors.  Added vhost argument.  Didn’t help, got different error but at least it was getting some of the right stuff…

This link made the most sense.  Gave up on iptables.  Used this and this as examples.  Bit of trouble when figuring out how to exempt my actual local websites (on the inside of the web/proxy server) from getting translated.

So, WRT54G:

mkdir /etc/iproute2

echo “201 proxy” > /etc/iproute2/rt_tables

ip rule add fwmark 2 table proxy

ip route add default via (squidproxyinternalipaddress) table proxy

iptables -t mangle -A PREROUTING -i vlan0 -p tcp –dport 80 -j MARK –set-mark 2

iptables -t mangle -A PREROUTING -m mark –mark 2 -j ACCEPT
On the squid/server box:

iptables -t nat -A PREROUTING -s 192.168.x.x/25 -p tcp –dport 80 -j ACCEPT

(yes, I have the network split down a /24… so it’s strange).
iptables -t nat -A PREROUTING -p tcp -d ! (squidproxyinternalipaddress) –dport 80 -j REDIRECT –to-port 3128

Seems to do the trick so far.  The bad part is more web traffic goes through the one box, so the memory, which was usually below 1GB without squid and all this happening, is now at 2.5 out of 3GB.  I doubt it’ll increase much though.

Interesting ethical experiment – I got SRG for the statistics, which seems to work well.  Put up a password-protected page with the stats for all the visited sites.  I’m thinking of setting up a separate page for weekly and one for weekend stats, and giving the household access to view the weekend ones, so that everyone can see what’s being visited.  I wonder if that’ll act as a deterrent.

Y’know, I thought a trackback would somehow include the tracked blog in the post… but I didn’t see it, so added it.  Hm.  Shows you how much I get into this, if the updates timeframes themselves don’t do it.

I made another, too – http://youmightbegayif.namor.ca/

Shaddap.
It’s meant to be slightly humorous.

Took a couple hour drive out west to a WWII air museum.  Somewhat interesting, maybe not as enthralling for the kids, though.  Pictures shall be up in the usual place.

Re:  http://www.violentacres.com/archives/158/diary-of-a-teenage-runaway

I had to figure out where to put, and what the hell you do with a trackback. I installed this pre-made, pre-formatted, simplistic (?) system in order to make it easier to journalize the most inane moments of my life, and have usually failed miserably (did you see the date of the post before this?)

I never really link elsewhere. I don’t think of my blog on a daily basis – and, for being the somewhat befuddled geek that I am, I consider that a benevolent happenstance more than a failure. So, the day it happened that I wanted to send a few words out to someone I didn’t know, I found it was meant to be … well, slightly difficult.

And that pause made me question my motives for wanting to do so.

Good.

The best gifts may be reflective.

So.

I’ve never had it as bad as the story. Never. I’m not sure I can conceive of it – am I egotistical either way? I agree with the supposed point of it, perhaps because I try to, or looked for it.

One site I was a part of had an argument that… somehow (I don’t think it was the original intent) turned into whether rape was worse than bullying.

I assumed rape. Actually, I never considered the other option. Rape = worst. So I argued the point.

Someone called me wrong and tore a strip. They didn’t respect my opinion and phrase it nicely. Being psychologically tormented can run a whole gamut of experience, and … well, people kill themselves over it. Hell, haven’t I almost?

For me to assume that it was the only conclusion was pointed out as faulty. It took me a while. I found and asked someone who’d been party to both, and (she) agreed that the rape was the lesser of the two.

I’m not sure how well I can distill the meaning for me behind my ill-kempt phrasing and stuttering blather.

Point (I think): I don’t think I necessarily believe the best of people solely because their shining visage is the only light they turn toward me, and this reinforced that.

The writing, a notch up from my banged up syllables, but not spectacular. I was wondering who, what, why, the whole way through – as an actual story, it left a lot. As a narrative, it’s better than a police blotter, *just*.

But then you dis Good Will Hunting, and hey, whoa, girl.

Anyway. I’m getting the impression I’d be wishing harm on the writer if we ever met, but the matter-of-fact delivery of topics is (she got it) refreshing, so I’m going to wade a way in and let my own ideology crash against the waves therein.

Today I also was made to realize that no bands I currently like have been here in a while. Else I’m just missing them – getting interested by show descriptions or reviews, thus after the fact, and somewhat conducive to having a long waiting in the future.