Transparent Remote Proxy Server

Jason Opperisano opie at
Mon Sep 27 20:27:56 CEST 2004

On Mon, 2004-09-27 at 14:25, ms419 at wrote:
> Thank you sincerely for your suggestion! You are correct: It is simpler 
> to use DNAT & MASQUERADE. I tried it & it works. But now, I am trying 
> to avoid using NAT.
> The problem with NAT (as I understand it) is it rewrites the 
> destination address, which breaks HTTP/1.0 requests without a Host: 
> header. By using policy routing, I hope to route traffic through wum 
> without rewriting the destination address.

your "-j REDIRECT" on wum rewrites the destination IP address as well.


Jason Opperisano <opie at>

More information about the netfilter mailing list