Again transparent proxy
Simone Celli Marchi
scelli@quadrante.com
Fri, 8 Jun 2001 08:46:37 +0200
Hi,
I read all thread about transparent proxy but my configuration doesn't work.
I have classic scenario, with a linux box as gateway and another internal
linux box as proxy. Transparent proxy on gateway works very well, but now I
want redirect some ip on the other proxy on the internal machine. I use
those ip:
gateway: 192.168.0.254
proxy: 192.168.0.200
client that must be redirect to internal proxy: 192.168.0.204
with the following configuration on gateway:
iptables -A PREROUTING -s 192.168.0.204 -p tcp --dport 80 -j DNAT
--to-destination 192.168.0.200:8080
iptables -A POSTROUTING -d 192.168.0.200 -p tcp --dport 8080 -j SNAT
--to-source 192.168.0.254
With tcpdump on gateway I see packet dnated, but on proxy I see no
packet.
Squid is ok, because the same configuration on gateway works with this
command:
iptables -A PREROUTING -s 192.168.0.0/24 -p tcp --dport 80 -j DNAT
--to-destination 192.168.0.254:8080
Sorry for my bad english.
--
Simone Celli Marchi
System Administrator
Quadrante Srl - nuovacomunicazione
http://www.quadrante.com