On 16/07/10 21:18, Jan Engelhardt wrote: > On Friday 2010-07-16 17:14, Bas van Sisseren wrote: >>>> >>>> OK, so basically you just want to rewrite the port number. An easier >>>> way to do this without iterating through all addresses would be to >>>> change userspace and the kernel so you can create REDIRECT rules >>>> without the IP_NAT_RANGE_MAP_IPS flag. That won't work for forwarded >>>> packets, but its the simplest solution for the case you describe. >>> >>> Isn't TPROXY the right thing here if all you want is changing the port >>> of delivery? :-) >> >> I could use TPROXY.. But then I still need to patch the kernel. Even Debian >> unstable kernels do not yet have the ipt_TPROXY module. Besides that, >> TPROXY looks promising. > > Squeeze should have xt_TPROXY.ko, which was added for 2.6.28. Hmm, my mistake. Even the backports kernels have TPROXY. I guess I made a typo when checking the /boot/config-* files. I will have a look at it, thx! :-) -- Bas van Sisseren <bas@xxxxxxxxxxxxxxxxx> Quarantainenet -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
