Re: Should "Transparent web-caching" work with ppp0/pptp? (It doesn't...)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Aleksey Tsalolikhin a écrit :

[root@vulture ~]#  telnet -b 192.168.2.131 www.google.com 80
telnet: invalid option -- b

Well, the telnet client in RedHat does not seem to support this option while the one in Debian does. You may try nc (netcat) instead.

$ nc -v -s 192.168.2.133 www.google.com 80

Note that from your tcpdump trace ppp0's address seem to be varying. Use the current one.

I've tried running tcpdump on the web server as well, and I don't see
ANY packets coming in from the VPN server when I run "telnet website
80" on the pptp client... (the CentOS box).

Could I be running into 1a?

I'm afraid so.

If I don't use iptables, and just set up a static route for that web
site via the PPTP server, and telnet to website 80, it works!!
[...]
So why does it work with static route and doesn't work with the alt
routing table  trick?  The only difference I can see is, in the static
route case, the packets are a little bit smaller.

The difference is the source address, as explained in my previous posts.

Any ideas?

Yes, one :

iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html

[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux