> On Jun 25, 2015, at 4:04 PM, Leif Hedstrom <zwoop@apache.org> wrote:
>
>
>> On Apr 8, 2015, at 5:30 PM, Yue, Cong <Cong_Yue@alliedtelesis.com <mailto:Cong_Yue@alliedtelesis.com>>
wrote:
>>
>> Hi
>>
>> Can somebody advise how I can do transparent proxy if I only have one physic NIC
in my ATS server?
>> The network topology in my environment is as
>> 1, I am doing forward proxy
>
>
> Maybe I’m naive, but wouldn’t something like this work:
>
> iptables -t nat -A PREROUTING -i en0 -p tcp -m tcp -s 10.0.0.0/8 --dport 80 -j REDIRECT
--to-port 8080
>
>
> (replace 10.0.0.0/8 with you internal network range).
In this setup, you don’t have to do anything on ATS, other than setting it up as an open
proxy (it doesn’t have to do anything special re: tproxy).
— Leif
|