Hi, I was experimenting with tinyproxy and tried to get all webtraffic that goes through the fonera move through tinyproxy except ofcoarse the traffic from tinyproxy itself it's using for this -m owner --uid-owner nobody... because it's running as such... but the iptables of Fon-Ng doesn't support these features?
*suggestions?* #source: http://www.vollmar.ch/dansguardian-e.html #Let tinyproxy out (it is running as nobody) iptables -t nat -A OUTPUT -p tcp --dport 80* -m owner --uid-owner nobody* -j ACCEPT # Forward all web traffic to dansguardian/tinyproxy iptables -t nat -A OUTPUT -p tcp --dpor 80 -j REDIRECT --to-ports 8888 The following iptabels extensions are installed by default in Fon_ng firmware : r...@fonera:/etc# opkg list_installed|grep -i "iptabl" iptables - 1.4.0-1 - iptables-mod-conntrack - 1.4.0-1 - iptables-mod-extra - 1.4.0-1 - iptables-mod-filter - 1.4.0-1 - iptables-mod-imq - 1.4.0-1 - iptables-mod-ipopt - 1.4.0-1 - iptables-mod-nat - 1.4.0-1 - ps -ef PID USER VSZ STAT COMMAND 27089 nobody 1760 S tinyproxy 27090 nobody 1760 S tinyproxy 27091 nobody 1760 S tinyproxy 27092 nobody 1760 S tinyproxy 27093 nobody 1760 S tinyproxy 27094 nobody 1760 S tinyproxy 27095 nobody 1760 S tinyproxy 27096 nobody 1760 S tinyproxy 27097 nobody 1760 S tinyproxy 27098 nobody 1760 S tinyproxy 27099 nobody 1760 S tinyproxy r...@fonera:/etc# cat /var/tinyproxy.log INFO Oct 15 12:56:10 [27087]: Initializing tinyproxy ... INFO Oct 15 12:56:10 [27087]: Setting "Via" proxy name to: tinyproxy INFO Oct 15 12:56:10 [27087]: Adding Port [443] to the list allowed by CONNECT INFO Oct 15 12:56:10 [27087]: Adding Port [563] to the list allowed by CONNECT INFO Oct 15 12:56:10 [27087]: Setting stathost to "tinyproxy.stats". INFO Oct 15 12:56:10 [27089]: Now running as group "nogroup". INFO Oct 15 12:56:10 [27089]: Now running as user "nobody". INFO Oct 15 12:56:10 [27089]: Creating child number 1 of 10 ... INFO Oct 15 12:56:10 [27089]: Creating child number 2 of 10 ... INFO Oct 15 12:56:10 [27089]: Creating child number 3 of 10 ... INFO Oct 15 12:56:10 [27089]: Creating child number 4 of 10 ... INFO Oct 15 12:56:10 [27089]: Creating child number 5 of 10 ... INFO Oct 15 12:56:10 [27089]: Creating child number 6 of 10 ... INFO Oct 15 12:56:10 [27089]: Creating child number 7 of 10 ... INFO Oct 15 12:56:10 [27089]: Creating child number 8 of 10 ... INFO Oct 15 12:56:10 [27089]: Creating child number 9 of 10 ... INFO Oct 15 12:56:10 [27089]: Creating child number 10 of 10 ... INFO Oct 15 12:56:10 [27089]: Finished creating all children. INFO Oct 15 12:56:10 [27089]: Setting the various signals. INFO Oct 15 12:56:10 [27089]: Starting main loop. Accepting connections. thnx!
_______________________________________________ Development mailing list [email protected] http://fonosfera.org/mailman/listinfo/development
