Probably a good way to do this (assuming you have the bridge-nf patches) would be something like this:
$LOCALNET = 192.168.10.0/24 $PROXYMACHINE = 192.168.10.1 $IPTABLES -A INPUT -i eth0 -s $LOCALNET -p tcp --destination-port 8080 -j ACCEPT $IPTABLES -t nat -A PREROUTING -i eth0 -s ! $PROXYMACHINE -d ! $LOCALNET -p tcp --dport 80 -j REDIRECT --to-port 8080 Note that the -s and -d lines (with the '!') are important, as you don't want redirection of web traffic from the proxy (you'll get a loop). This works quite well for me. Jason On Fri, Oct 11, 2002 at 12:42:34PM -0700, Tony Toole wrote: > Hello, > > I'm looking for information on setting up a transparent proxy on a bridged > firewall / proxy server. I've tried this in the past but when the packet > gets forwarded to the proxy, it does not make it's way back to the client > who issued the www request. > > It works quite well while routing, but I need something that can magically > drop into a network undetected. > > Thanks > > > > _______________________________________________ > Bridge mailing list > [EMAIL PROTECTED] > http://www.math.leidenuniv.nl/mailman/listinfo/bridge -- _________________________________________________________________ Jason R. Martin | Network Administrator | Coordinated Science Lab _______________________________________________ Bridge mailing list [EMAIL PROTECTED] http://www.math.leidenuniv.nl/mailman/listinfo/bridge
