Hello, Nestor A. Diaz a écrit : > > According to your experience what would be the best strategy to > intercept traffic from one machine to another and process some (not all) > request in a transparent way. > > I explain, i have two machines: > > 192.168.1.1/24 <-> 192.168.1.2/24 > > All I want to do is to intercept traffic from a specific port(s), i.e. > 4000/tcp and process it in a 'machine in the middle'. > > 192.168.1.1/24 <-> machine-in-the-middle <-> 192.168.1.2/24 > > The idea is that when 192.168.1.1 connects to 192.168.1.2:4000 then the > machine in the middle will answer those requests, but the remaining > traffic from 192.168.1.1 to 192.168.1.2 keep forwarding as is, and the > same for the opposite direction. Bridge with TPROXY, I guess. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
