Fwd: proxy+port redirection behaviour

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Metal Gear <finattack@gmail.com>
To: netfilter@lists.netfilter.org
Subject: Fwd: proxy+port redirection behaviour
Date: Thu, 28 Apr 2005 15:12:15 +0600	[thread overview]
Message-ID: <110c7844050428021276a634f4@mail.gmail.com> (raw)
In-Reply-To: <110c784405042802112d30e98f@mail.gmail.com>

Hi,

I (for some unknown reason) was thinking that the firewall that your clients 
> used was a Linux box which had a 2nd hardware firewall connecting it to the 
> net. As such I did not take in to account that the host that you would be 
> running this rule on might not already be set up to
> 
forward traffic.


My clients gateway is set to squid proxy and the squid proxy 's gateway is 
set to the firewall. I want to run the rules on my squid box and there are 
no other rules on it. Except the ones that i send in my previous mail.

As such, do you have any other firewall rules set up or policies on chains 
> set to DROP traffic? Also you will need to make sure that 
> /proc/sys/net/ipv4/ip_forward is set to 1 thus configuring your server to 
> forward traffic. You will have to forward traffic as traffic is coming in to 
> your server and then being redirected / forwarded to another server. This 
> could possibly explain the ""filtering that nmap is reporting as I'm not 
> sure what type of error will be generated by trying to forward and then 
> being DROPed. I expect that the traffic will just look like there is 
> something in the way, not a reject or no route to host or any thing like 
> that.


Yes no extra DROP rules My squid box has only one interface so there is any 
neeed of enabling forwarding on it. ?? Anyways i enable forwarding but still 
it does not works.


Thanks

next prev parent reply	other threads:[~2005-04-28  9:12 UTC|newest]

Thread overview: 4+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2005-04-21 10:36 proxy+port redirection behaviour Metal Gear
2005-04-21 15:02 ` Taylor Grant
     [not found]   ` <110c784405042704552296d4f5@mail.gmail.com>
     [not found]     ` <42706029.2090908@riverviewtech.net>
     [not found]       ` <110c784405042802112d30e98f@mail.gmail.com>
2005-04-28  9:12         ` Metal Gear [this message]
2005-04-28 17:11           ` Fwd: " Taylor, Grant

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=110c7844050428021276a634f4@mail.gmail.com \
    --to=finattack@gmail.com \
    --cc=netfilter@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.