Hi Eliezer, We use our own custom server. The server listens for connections on all ports for both TCP & UDP and forwards any unauthenticated connections to two separate services running on the same machine. The problem with TPROXY was that despite it being configured exactly as we've configured it in the past when we used a squid proxy, the data packets never hit the services on the server which were supposed to handle them. The redirect target worked perfectly for this situation, simply capturing any packets on dport 1-65535 and redirecting it to port xxx on the same machine. Simply shifting port X to port Y without any other modifications. Cheers. Steve. Steve Noorderbroek C.T.O. Telsat Broadband Limited www.telsatbb.vu -----Original Message----- From: netfilter-owner@xxxxxxxxxxxxxxx [mailto:netfilter-owner@xxxxxxxxxxxxxxx] On Behalf Of Eliezer Croitoru Sent: Saturday, 29 September 2012 5:18 AM To: Steve (Telsat Broadband) Cc: 'Joao Pereira'; netfilter@xxxxxxxxxxxxxxx Subject: Re: ip6tables REDIRECT support On 9/27/2012 7:21 PM, Steve (Telsat Broadband) wrote: > The majority of the responses I did get suggested to use TPROXY > instead of redirect, but in my particular case, that didn't work > properly and seemed to have much more overhead than the redirect target. > What didnt worked? If you need a captive portal there is a very simple way to do it. What exactly do you use now? Eliezer > Hopefully someone out there in the dev team will understand our plight > and perhaps incorporate this important target. > > Cheers. > Steve. -- Eliezer Croitoru https://www1.ngtech.co.il IT consulting for Nonprofit organizations eliezer <at> ngtech.co.il -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
