Hi ZhouLi,<br><br>See below<br><br><div><span class="gmail_quote">On 7/9/07, <b class="gmail_sendername">Zhou Li</b> <<a href="mailto:zhou.li@ca-jc.com">zhou.li@ca-jc.com</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div bgcolor="#ffffff">
<div><font face="Arial" size="2">I test Zorp 3.0.14b + 2.0.6
cttproxy for kernel 2.6.17 and It work fine for me, but I found client
can</font></div>
<div><font face="Arial" size="2">see ip address of dummy interface that I
can't understand.</font></div>
<div><font face="Arial" size="2"></font> </div>
<div><font face="Arial" size="2">client(<a href="http://192.168.88.166" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">192.168.88.166</a>) <--> zorp(dummy ip
<a href="http://172.16.44.10" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">172.16.44.10</a>) <--> server(<a href="http://192.168.88.10" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">
192.168.88.10</a>)</font></div>
<div><font face="Arial" size="2"></font> </div>
<div>
<div><font face="Arial" size="2"># iptables -t tproxy -I PREROUTING -p tcp --dport
80 -j TPROXY --on-ip <a href="http://172.16.44.10" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">172.16.44.10</a> --on-port 60080</font></div>
<div><font face="Arial" size="2"></font> </div></div>
<div><font face="Arial" size="2">instances.conf:</font></div>
<div><font face="Arial" size="2">http -T -v 1 -s core.error:0 -p
/usr/local/etc/zorp/http.py -B <a href="http://172.16.44.10" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">172.16.44.10</a></font></div>
<div><font face="Arial" size="2"></font> </div>
<div><font face="Arial" size="2">http.py:</font></div>
<div><font face="Arial" size="2">.</font></div>
<div><font face="Arial" size="2">.</font></div>
<div><font face="Arial" size="2">.</font></div>
<div><font face="Arial" size="2">def zorp():<br> Service("http", MyHttp,
router=TransparentRouter(forge_addr=TRUE, forge_port=Z_PORT_EXACT))<br>
Listener(SockAddrInet(<a href="http://172.16.44.10" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">172.16.44.10</a>, 60080), "http", transparent=TRUE,
mark_tproxy=TRUE)</font></div>
<div><font face="Arial" size="2"></font> </div>
<div><font face="Arial" size="2">
<div><font face="Arial" size="2">when I make a new http request from client to
server and tcpdump will display the information below</font></div></font></div>
<div><font face="Arial" size="2"></font> </div>
<div><font face="Arial" size="2">tcpdump on client</font></div>
<div><font face="Arial" size="2"># tcpdump | grep <a href="http://172.16.44.10" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">172.16.44.10</a></font></div>
<div><font face="Arial" size="2">16:10:57.975579 802.1Q vlan#3 P0 172.16.44.10.60080
> 192.168.88.166.2883: P 0:32(32) ack 1 win 11680 (DF)<br>16:10:57.975611
172.16.44.10.60080 > 192.168.88.166.2883: P 0:32(32) ack 1 win 11680
(DF)<br>16:10:57.975831 192.168.88.166.2883 > 172.16.44.10.60080: R
3812615646:3812615646(0) win 0<br>16:10:57.975860 802.1Q vlan#3 P0
192.168.88.166.2883 > 172.16.44.10.60080: R 3812615646:38126156</font></div>
<div><font face="Arial" size="2"></font> </div>
<div><font face="Arial" size="2">tcpdump on server</font></div>
<div><font face="Arial" size="2">
<div><font face="Arial" size="2"># tcpdump | grep
<a href="http://172.16.44.10" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">172.16.44.10</a></font></div></font></div>
<div><font face="Arial" size="2">16:10:57.538207 arp who-has <a href="http://192.168.88.10" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">192.168.88.10</a> tell
<a href="http://172.16.44.10" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">172.16.44.10</a></font></div>
<div><font face="Arial" size="2"></font> </div>
<div><font face="Arial" size="2">my question is how to avoid client see dummy
ip address?</font></div>
<div><font face="Arial" size="2"></font> </div>
<div><font face="Arial" size="2">ZhouLi</font></div></div></blockquote><div><br></div><div><br>Does TProxy work in bridge mode - you appear to have the same network address/mask on both zorp interfaces - is this correct? Or is this on a VMWare system?
<br><br><br>
--<br>
Regards<br>
AJ<br>
<br>
NetSafety - Intenet Security Made Easy<br></div></div>