Howo to get IP_NF_NAT_LOCAL behavior back after kernel 2.6.10 ?
Jan Engelhardt
jengelh at linux01.gwdg.de
Fri Jul 29 13:26:04 CEST 2005
>I want to redirect local http traffic to a transparent squid porxy
>running on the NAT box itself.
>
>I've used :
># iptables -t nat -A OUTPUT -p tcp -m owner --uid-owner squid -j ACCEPT
># iptables -t nat -A OUTPUT -p tcp --dport 80 -j REDIRECT --to-ports 3128
>
>But this works no more with kernel 2.6.11 & later.
> pkts bytes target prot opt in out source destination
> 0 0 ACCEPT tcp -- any any anywhere
>anywhere OWNER UID match squid
Looks like squid doesnot send any packets at all.
Jan Engelhardt
--
More information about the netfilter
mailing list