On 9/1/06, Rudyanto Halim <[EMAIL PROTECTED]> wrote:
Coba skrip iptables Anda di paste.
Rudy
----- Original Message -----
From: "rednux" <[EMAIL PROTECTED]>
To: <[email protected]>
Subject: Re: [tanya-jawab] Transparent proxy [gagal]
> saya test menggunakan proxy 202.xxx.xx.x port 8080 dikomputer client
> $iptables -A FORWARD -s 192.168.0.10 -d ! 192.168.0.10 -p tcp --dport
> 8080 -j DROP
>
> Kok masih tembus ya ?
#####################################3
echo "redirect http trafic to port 8009"
iptables -t nat -A PREROUTING -i $INT_IP -p tcp -d ! 192.168.0.10 -m
multiport --dport 80,443 -j REDIRECT --to-port 8009
iptables -t nat -p tcp -A PREROUTING -s $IP_ALLOW_INTERNAL --dport 80
-j REDIRECT --to-port 8009
iptables -t nat -p tcp -A PREROUTING -s $IP_ALLOW_INTERNAL --dport
3128 -j REDIRECT --to-port 8009
iptables -A FORWARD -s $INT_IP -d ! 192.168.0.10-p tcp --dport 8080 -j DROP
iptables -A INPUT -i eth1 -p 6 --dport 8009 -m state --state
NEW,ESTABLISHED,RELATED -j ACCEPT
iptables -A OUTPUT -o eth0 -p 6 --dport 80 -m state --state
NEW,ESTABLISHED,RELATED -j ACCEPT
iptables -A INPUT -i eth0 -p 6 --sport 80 -m state --state
ESTABLISHED,RELATED -j ACCEPT
iptables -A OUTPUT -o eth1 -p 6 --sport 80 -m state --state
ESTABLISHED,RELATED -j ACCEPT
IP_ALLOW_INTERNAL=192.168.0.0/24
INT_IP = 192.168.0.10
--
FAQ milis di http://wiki.linux.or.id/FAQ_milis_tanya-jawab
Unsubscribe: kirim email ke [EMAIL PROTECTED]
Arsip dan info milis selengkapnya di http://linux.or.id/milis
