[tproxy] tproxy for locally originating connections
Balazs Scheidler
bazsi at balabit.hu
Fri Dec 3 23:39:49 CET 2010
On Mon, 2010-11-29 at 14:55 +1030, Adriel Gomboc wrote:
> Hello,
>
> I am new to the list, and couldn't find this discussed in the
> archives:
>
> I would like to use tproxy to proxy locally originating connections
> (on Linux). AFAIK there is a problem with doing this : the tproxy
> target is only valid in the mangle table, in the prerouting chain; and
> locally originating traffic (i.e. traffic originating from some client
> application running on the same host as the tproxy service) does not
> pass through the prerouting chain and presumably therefore cannot be
> tproxied.
>
> May I ask, am I right in the above,
yes.
> and if so, can anyone offer a work-around?
DNAT in local output?
--
Bazsi
More information about the tproxy
mailing list