dhottinger@xxxxxxxxxxxxxxxxxxxxxx wrote: > I currently redirect all traffic on port 80 to my proxy server with > $IPC -t nat -A PREROUTING -p tcp -i ! $IF --dport 80 -s ! > 204.111.40.0/24 -d ! 204.111.40.0/24 -j DNAT --to-destination > $PROXY_IP:8080 > > I would like to have any traffic destined for apple.com excluded from > this redirect. I cant seem to get the syntax right. Anyone got any ideas? <snip*> iptables -t nat -A PREROUTING -p tcp -i $iface --dport 80 -d $apples_net -j RETURN iptables -t nat -A PREROUTING -p tcp -i $iface --dport 80 -d $another_not_to_proxy_network -j RETURN iptables -t nat -A PREROUTING -p tcp -i $iface --dport 80 -j DNAT --to $proxy:$port -- regards, Georgi Alexandrov key server - pgp.mit.edu :: key id - 0x37B4B3EE Key fingerprint = E429 BF93 FA67 44E9 B7D4 F89E F990 01C1 37B4 B3EE
Attachment:
signature.asc
Description: OpenPGP digital signature
