Re: iptables transparent proxy
From: Fritz Bayer (fritz-bayer_at_web.de)
Date: 06/12/04
- Next message: Antoine EMERIT: "Re: Is there any problem in my iptables table?"
- Previous message: jwhan: "Is there any problem in my iptables table?"
- In reply to: Fritz Bayer: "iptables transparent proxy"
- Next in thread: Antoine EMERIT: "Re: iptables transparent proxy"
- Reply: Antoine EMERIT: "Re: iptables transparent proxy"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: 12 Jun 2004 01:07:26 -0700
Thanks for you replies. I read them and played around a little bit.
The rule which I wrote down works for all other pc's on my LAN besides
the Linux box on which the proxy runs.
And you are right, that I have to set this up on each PC. So I have to
set the gateway to the Linux Box, so that packets get routed throught
the linux box and are not sent directly to the router.
This makes me a bit happy. However, I would like the Browser Mozilla
on the Linux box to use the proxy. Now, I don't want to set it.
That's because I programmed it myself and it should be a transparent
proxy, which makes a differnce in the HTTP 1.1 Spec on how it has to
handle requests.
I also managed to insert a rule, which send packets leaving from the
local box to port 8888. The problem with this is, that the proxy also
opens a connection to port 80, thereby the first rule gets applied
again and I get stuck in an infinite loop.
Do you know which ruleset would do this? Forwarding requests
originating from the local machine to port 80 to port 8888. But NOT
forwarding those which are actually new requests from the proxy?
- Next message: Antoine EMERIT: "Re: Is there any problem in my iptables table?"
- Previous message: jwhan: "Is there any problem in my iptables table?"
- In reply to: Fritz Bayer: "iptables transparent proxy"
- Next in thread: Antoine EMERIT: "Re: iptables transparent proxy"
- Reply: Antoine EMERIT: "Re: iptables transparent proxy"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
