On 24/08/11 06:44, Rob Sterenborg (Lists) wrote:
On Tue, 2011-08-23 at 20:05 +0530, TEJAS wrote:
Hi,
I set log rule for port 80 traffic logging and it is working fine. And
i want to log tproxy rule which is redirect traffic from port 80 to
port 3129 (squid tproxy). So for that what will be LOG rule for this?
[snip]
Actually i want to see packet redirect from port 80 to port 3129.
What is the use of socket match?I try to find from google and also
read some document , but i am not having any good understanding for
it.So kindly guide me that what is the use of socket match and how's
TPROXY match works?
Sorry, can't help you there so maybe someone else can jump in: I've
never used the socket match or TPROXY target. (According to what I just
read the socket match replaced the tproxy match. I suppose you took your
experiment from https://lwn.net/Articles/252545/ because it looks the
same.)
A squid wiki cut-n-paste job.
TPROXY rule is capturing packets to port 80 into squid port 3129.
DIVERT is preventing packets leaving the squid from being captured.
Log marked packets after TPROXY rule to see the packets entering squid.
Log marked packets after the DIVERT sub-chain MARK rule to see packets
exiting squid.
AYJ
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
