Re: redirect

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



dhottinger@xxxxxxxxxxxxxxxxxxxxxx wrote:
> I currently redirect all traffic on port 80 to my proxy server with
> $IPC -t nat -A PREROUTING -p tcp -i ! $IF --dport 80    -s !
> 204.111.40.0/24 -d ! 204.111.40.0/24 -j DNAT --to-destination
> $PROXY_IP:8080
> 
> I would like to have any traffic destined for apple.com excluded from
> this redirect.  I cant seem to get the syntax right.  Anyone got any ideas?
<snip*>

iptables -t nat -A PREROUTING -p tcp -i $iface --dport 80 -d $apples_net
-j RETURN

iptables -t nat -A PREROUTING -p tcp -i $iface --dport 80 -d
$another_not_to_proxy_network -j RETURN

iptables -t nat -A PREROUTING -p tcp -i $iface --dport 80 -j DNAT --to
$proxy:$port

-- 
regards,
Georgi Alexandrov

key server - pgp.mit.edu :: key id - 0x37B4B3EE
Key fingerprint = E429 BF93 FA67 44E9 B7D4  F89E F990 01C1 37B4 B3EE

Attachment: signature.asc
Description: OpenPGP digital signature


[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux