On 04/24/2010 09:53 PM, Michael Torrie wrote: > Here're the rules I use, as exported by iptables-save: > > *nat > :PREROUTING ACCEPT [9:690] > :POSTROUTING ACCEPT [3304:231437] > :OUTPUT ACCEPT [3302:231317] > -A OUTPUT -p tcp -m tcp --dport 80 -m owner --uid-owner dansguardian -j > ACCEPT > -A OUTPUT -p tcp -m tcp --dport 3128 -m owner --uid-owner dansguardian > -j ACCEPT > -A OUTPUT -p tcp -m tcp --dport 8888 -m owner --uid-owner dansguardian > -j ACCEPT > -A OUTPUT -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 8080 > -A OUTPUT -p tcp -m tcp --dport 3128 -j REDIRECT --to-ports 8080
oops. Forgot a chain for port 8888, which tinyproxy itself uses: -A OUTPUT -p tcp -m tcp --dport 8888 -j REDIRECT --to-ports 8080 /* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
