> On Jun 25, 2015, at 4:04 PM, Leif Hedstrom <[email protected]> wrote: > > >> On Apr 8, 2015, at 5:30 PM, Yue, Cong <[email protected] >> <mailto:[email protected]>> wrote: >> >> Hi >> >> Can somebody advise how I can do transparent proxy if I only have one physic >> NIC in my ATS server? >> The network topology in my environment is as >> 1, I am doing forward proxy > > > Maybe I’m naive, but wouldn’t something like this work: > > iptables -t nat -A PREROUTING -i en0 -p tcp -m tcp -s 10.0.0.0/8 > --dport 80 -j REDIRECT --to-port 8080 > > > (replace 10.0.0.0/8 with you internal network range).
In this setup, you don’t have to do anything on ATS, other than setting it up as an open proxy (it doesn’t have to do anything special re: tproxy). — Leif
