And what is the output of extensions/.tproxy-test? Is these lines? TPROXY tproxy I see that the tproxy match is loaded, but the TPROXY target is not: ipt_TPROXY is missing from the module list. Did you enable the TPROXY target? In .config: CONFIG_IP_NF_TARGET_TPROXY=m Rodrigo Ferreira Santos írta:

Yes Laszlo applied the patch this: | cd /usr/src/iptables-1.3.6.0debian1 cat <pathtocttproxy>/iptables/iptables-1.3-cttproxy.diff | patch -p1 chmod +x extensions/.tproxy-test make KERNELDIR=/usr/src/linux|

Once installed this:

|cd /usr/src/iptables-1.3.6.0debian1 dpkg-buildpackage -b -rfakeroot cd /usr/src/ dpkg -i iptables_1.3.6.0debian1-5_i386.deb

| Have the following modules loaded

ipt_tproxy 1792 0 iptable_tproxy 16632 0 iptable_nat 7332 1 iptable_tproxy ip_nat 22220 2 iptable_tproxy,iptable_nat ip_conntrack 50400 3 iptable_tproxy,iptable_nat,ip_nat ip_tables 12964 4 iptable_mangle,iptable_filter,iptable_tproxy,iptable_nat x_tables 13316 3 ipt_tproxy,iptable_nat,ip_tables

Thank you for your attention ..

2007/10/24, Laszlo Attila Toth < panther@balabit.hu <mailto:panther@balabit.hu>>:

Rodrigo Ferreira Santos írta: > I need help with problems already done all this work and the squid and > the kernel already have the modules but the iptables not look so raises > the error message: > > cache:~# iptables -t tproxy -A PREROUTING -i eth1 -p tcp --dport 80 -j > TPROXY --on-port 3128 > iptables v1.3.6: Unknown arg `--on-port' > Try `iptables -h' or 'iptables --help' for more information. >

Did you applied the iptables patch? I got this message when I tried to use iptables without TPROXY target.

-- Panther

-- Panther