Hi, Sorry, but you'll need to track down much more information than simply quoting your configuration. so what is the difference between the server side connection if you use tproxy and when you don't. a tcpdump could help here. why does not it open? it displays an error message, or the srver side connection times out? are the source/destination IP addresses the same when you use tproxy and when you don't? and other similar questions. without more concrete questions and additional details, we're unable to help. On Tue, 2009-02-03 at 01:40 -0800, sonu chouhan wrote:
hi, i am getting one more thing with the related problem, my local server where tproxy setup is 172.16.1.1 and i have run apache on it, normaly when i open 172.16.1.1 in browser it's open el5 default page and webserver works, but when i apply tproxy rules this page never open. and the same time normal website like google, orkut work fine. and if i use normal proxy it's open smoothly. i am using following iptables rules for tproxy.
/sbin/ip rule add fwmark 0x1/0x1 lookup 100 /sbin/ip route add local 0.0.0.0/0 dev lo table 100
/iptables/sbin/iptables -t mangle -N DIVERT /iptables/sbin/iptables -t mangle -A PREROUTING -p tcp -m socket -j DIVERT /iptables/sbin/iptables -t mangle -A DIVERT -j MARK --set-mark 0x1/0x1 /iptables/sbin/iptables -t mangle -A DIVERT -j ACCEPT /iptables/sbin/iptables -t mangle -A PREROUTING -p tcp --dport 80 -j TPROXY --tproxy-mark 0x1/0x1 --on-port 3128
-- Bazsi