From mboxrd@z Thu Jan  1 00:00:00 1970
From: Emilio Casbas <ecasbas@unav.es>
Subject: Re: Transparant proxy
Date: Wed, 09 Jun 2004 09:55:37 +0200
Sender: netfilter-admin@lists.netfilter.org
Message-ID: <40C6C279.9060609@unav.es>
References: <40BF3E60.2060206@efn.uncor.edu>	<1157.172.16.131.133.1086337464.squirrel@mail.suarapembaruan.co.id>	<40C02017.5030304@unav.es> <20040608205956.3e3c3e47@localhost>
Mime-Version: 1.0
Content-Transfer-Encoding: 7bit
Return-path: <netfilter-admin@lists.netfilter.org>
In-Reply-To: <20040608205956.3e3c3e47@localhost>
Errors-To: netfilter-admin@lists.netfilter.org
List-Help: <mailto:netfilter-request@lists.netfilter.org?subject=help>
List-Post: <mailto:netfilter@lists.netfilter.org>
List-Subscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>,
	<mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
List-Id: <netfilter.vger.kernel.org>
List-Unsubscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>,
	<mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
List-Archive: <https://lists.netfilter.org/pipermail/netfilter/>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
To: Djalma Fadel Junior <fadel@ferasoft.com.br>
Cc: netfilter@lists.netfilter.org

Djalma Fadel Junior wrote:

>On Fri, 04 Jun 2004 09:09:11 +0200
>Emilio Casbas <ecasbas@unav.es> wrote:
>
>  
>
>>david@suarapembaruan.co.id wrote:
>>
>>    
>>
>>>Dear all,
>>>can anybody tell me how to set rules in iptables if i want to use
>>>transparant proxy.
>>>
>>>      
>>>
>>iptables -t nat -A prerouting -i eth0 -p tcp --dport 80 -j REDIRECT 
>>--to-port 3128
>>
>>    
>>
>
>but, if the user sets manually another proxy in his browser, he doesn't get in this rule and all ACLs in proxy are inutil.
>
>how could redirect that connections through my proxy?
>
>
>thanks in advance,
>
>D. Fadel Jr.
>
>  
>

Deny in the firewall all connections to internet
that don't become from the transparent proxy.
The transparent proxy is the unique intermediary
between your users and internet.

Emilio C.