Tech Support Guy banner
Status
Not open for further replies.
1 - 1 of 1 Posts

·
Registered
Joined
·
676 Posts
Discussion Starter · #1 ·
Hi.. wondering if someone can give me a hand.. I'm almost at the point of pulling my hair out..

I've got a linux box running opensuse 11.3 acting as a transparent proxy/dhcp server.. http access is all good. Now I know that you can't route https traffic through the proxy, but what I've been trying to do is just pass any traffic with a destination port of 443 straight on to the modem.. but no luck.

This is what my iptables file looks like at the moment..

Code:
# Generated by iptables-save v1.4.4 on Wed Jan  5 22:21:19 2011
*filter
:INPUT ACCEPT [904:194295]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [943:218361]
-A FORWARD -s 192.168.0.0/32 -p tcp -m tcp --dport 443 -j ACCEPT
COMMIT
# Completed on Wed Jan  5 22:21:19 2011
# Generated by iptables-save v1.4.4 on Wed Jan  5 22:21:19 2011
*nat
:PREROUTING ACCEPT [735:46204]
:POSTROUTING ACCEPT [27:1801]
:OUTPUT ACCEPT [27:1801]
-A PREROUTING -i eth0 -p tcp -m tcp --dport 80 -j DNAT --to-destination 192.168.0.254:$
-A PREROUTING -i eth0 -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 3128
-A PREROUTING -p tcp -m tcp --dport 443 -j DNAT --to-destination 192.168.0.1:443
COMMIT
# Completed on Wed Jan  5 22:21:19 2011
# Generated by iptables-save v1.4.4 on Wed Jan  5 22:21:19 2011
*mangle
:PREROUTING ACCEPT [1638:239479]
:INPUT ACCEPT [904:194295]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [945:218465]
:POSTROUTING ACCEPT [945:218465]
COMMIT
# Completed on Wed Jan  5 22:21:19 2011
 
1 - 1 of 1 Posts
Status
Not open for further replies.
Top