Transparent Remote Proxy Server

Jason Opperisano opie at 817west.com
Mon Sep 27 20:27:56 CEST 2004


On Mon, 2004-09-27 at 14:25, ms419 at freezone.co.uk wrote:
> Thank you sincerely for your suggestion! You are correct: It is simpler 
> to use DNAT & MASQUERADE. I tried it & it works. But now, I am trying 
> to avoid using NAT.
> 
> The problem with NAT (as I understand it) is it rewrites the 
> destination address, which breaks HTTP/1.0 requests without a Host: 
> header. By using policy routing, I hope to route traffic through wum 
> without rewriting the destination address.

your "-j REDIRECT" on wum rewrites the destination IP address as well.

-j

-- 
Jason Opperisano <opie at 817west.com>




More information about the netfilter mailing list