On Wed, Mar 09, 2011 at 09:24:19AM +0100, Nyika Csaba wrote:
ip rule add fwmark 1 lookup 100 ip route add local 0.0.0.0/0 dev lo table 100
Nekem ezek forditott sorrendben vannak.
iptables -t mangle -N DIVERT iptables -t mangle -A PREROUTING -p tcp -m socket --dport 433 -j DIVERT iptables -t mangle -A PREROUTING -p tcp -m tcp --dport 443 -j TPROXY --on-port 50443 --on-ip 172.16.16.1 --tproxy-mark 0x1/0x1 iptables -t mangle -A DIVERT -j MARK --set-xmark 0x1/0xffffffff iptables -t mangle -A DIVERT -j ACCEPT
-t mangle -A PREROUTING -p tcp -m socket -j DIVERT -t mangle -A DIVERT -j MARK --set-mark 1 -t mangle -A DIVERT -j ACCEPT -t mangle -A PREROUTING -p tcp --dport 443 -j TPROXY --tproxy-mark 0x1/0x1 --on-port 50443 --on-ip 172.16.16.1 Ennyivel mar mukodik. -- Udvozlettel Zsiga