[tproxy] yahoo and hotmail never open
Balazs Scheidler
bazsi at balabit.hu
Wed Feb 11 12:28:34 CET 2009
Hi,
Sorry, but you'll need to track down much more information than simply
quoting your configuration. so what is the difference between the server
side connection if you use tproxy and when you don't.
a tcpdump could help here. why does not it open? it displays an error
message, or the srver side connection times out? are the
source/destination IP addresses the same when you use tproxy and when
you don't?
and other similar questions. without more concrete questions and
additional details, we're unable to help.
On Tue, 2009-02-03 at 01:40 -0800, sonu chouhan wrote:
> hi,
> i am getting one more thing with the related problem, my local server
> where tproxy setup is 172.16.1.1 and i have run apache on it, normaly
> when i open 172.16.1.1 in browser it's open el5 default page and
> webserver works, but when i apply tproxy rules this page never open.
> and the same time normal website like google, orkut work fine. and if
> i use normal proxy it's open smoothly. i am using following iptables
> rules for tproxy.
>
> /sbin/ip rule add fwmark 0x1/0x1 lookup 100
> /sbin/ip route add local 0.0.0.0/0 dev lo table 100
>
>
> /iptables/sbin/iptables -t mangle -N DIVERT
> /iptables/sbin/iptables -t mangle -A PREROUTING -p tcp -m socket -j
> DIVERT
> /iptables/sbin/iptables -t mangle -A DIVERT -j MARK --set-mark 0x1/0x1
> /iptables/sbin/iptables -t mangle -A DIVERT -j ACCEPT
> /iptables/sbin/iptables -t mangle -A PREROUTING -p tcp --dport 80 -j
> TPROXY --tproxy-mark 0x1/0x1 --on-port 3128
>
>
>
--
Bazsi
More information about the tproxy
mailing list