From: David Cannings <lists@edeca.net>
To: netfilter@lists.netfilter.org
Subject: Re: transparent proxy
Date: Wed, 17 Mar 2004 14:21:12 +0000 [thread overview]
Message-ID: <200403171421.12463.lists@edeca.net> (raw)
In-Reply-To: <3C204966522884458700FF59D6EFB87A01CAFE@FORUS01.netpower.lan>
On Wednesday 17 March 2004 12:33, Fredrik Emil Jensen wrote:
> Thank you Antony, finally it's working for me. I have another question
> for the list; is it possible to use iptables to redirect any request on
> port 80 to a specific web address?
>
> I know you can use the rule, iptables -t nat -A PREROUTING -p tcp -s
> 192.168.1.0/24 -d 0/0 --dport 80 -j DNAT --to ip.address.xx.xx:80
>
> But my problem occurs when you have many different subnets and you want
> subnet1 to be redirected to http://test.domain.com/site1, subnet2 to be
> redirected to http://test.domain.com/site2 etc.
>
> Does anyone have any suggestions on how to do this with iptables, is it
> possible? Or do I still need to use squid and squidGuard!
That's application level, the request is inside the HTTP packet (which is
inside the TCP packet, which is inside the IP packet, etc). iptables
cannot do this, you would have to use a proxy such as Apache or Squid.
David
next prev parent reply other threads:[~2004-03-17 14:21 UTC|newest]
Thread overview: 28+ messages / expand[flat|nested] mbox.gz Atom feed top
2004-03-17 12:33 transparent proxy Fredrik Emil Jensen
2004-03-17 14:21 ` David Cannings [this message]
-- strict thread matches above, loose matches on Subject: below --
2010-03-09 23:44 Marco Schuth
2010-03-10 0:23 ` Amos Jeffries
2010-03-13 8:21 ` Mart Frauenlob
2010-03-13 10:05 ` /dev/rob0
2010-03-13 12:08 ` Mart Frauenlob
2010-03-13 12:11 ` Mart Frauenlob
2010-03-13 16:41 ` /dev/rob0
2010-03-13 21:58 ` Mart Frauenlob
2005-02-03 12:30 Luca Ferrari
2005-02-03 15:58 ` Jens Knoell
2005-02-05 18:22 ` Andreas Unterkircher
2005-02-05 19:42 ` Adrian C.
2005-02-05 20:22 ` Andreas Unterkircher
2005-02-05 20:47 ` Andreas Unterkircher
2004-03-15 9:19 Fredrik Emil Jensen
2004-03-16 1:57 ` Alexander Samad
2004-03-16 8:44 ` Antony Stone
2004-02-27 19:19 Guillermo Chui Lau
2004-02-27 8:48 Tomasz Macioszek
2004-02-27 9:18 ` Jeroen Vriesman
2004-02-27 9:27 ` Antony Stone
2004-02-27 10:25 ` Jeroen Vriesman
2004-02-27 11:50 ` John A. Sullivan III
2004-02-27 17:00 ` Daniel F. Chief Security Engineer -
2003-09-10 21:19 Transparent Proxy Kilson Arruda
2002-11-25 13:04 Cyril COUPEL
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=200403171421.12463.lists@edeca.net \
--to=lists@edeca.net \
--cc=david@edeca.net \
--cc=netfilter@lists.netfilter.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.