[tproxy] TProxy version 4.0.0 released
hidden at sch.bme.hu
Wed Aug 8 10:03:05 CEST 2007
On k, aug 07, 2007 at 09:55:29 -0600, Cameron Schaus wrote:
> To be clear, I have one test bridge running the tproxy code generating
> an HTTP GET request to a web server using a foreign source address for
> the request. I have placed the static arp entry on the web server.
> Using my setup I have validated that the tproxy v4.0.0 code does work
> without a bridge. However, when I configure a bridge, per my previous
> posts, and run my test again, the client machine (with bridge+tproxy)
> sits and sends arp requests for the foreign IP address.
> I would like to understand why the 4.0.0 code does not work when a
> bridge is involved, because based on previous discussions it sounds like
> should work when I create a static ARP entry on the web server. The
> packets arriving back at the bridge have a dest ethernet address of the
> bridge, and so should make it up the stack correctly.
> When I use ebtables brouting feature, the packets are processed
> correctly by the bridge, however, using ebtables brouting is not
> feasible for my application.
If you configure ARP properly, then it should work. Definitely worth
investigating... Do you have any clue _where_ things might go wrong inside
the kernel? (It looks like the packet does get up to routing, but then the
socket is somehow not found and the kernel tries to forward it.)
More information about the tproxy