ne-vlezay80 Posted June 30, 2015 · Report post У меня нистроет TPROXY в сквирд до следующей инструкции: ip -f inet rule add fwmark 1 lookup 100 ip -f inet route add local default dev eth0 table 100 iptables -t mangle -N DIVERT iptables -t mangle -A DIVERT -j MARK --set-mark 1 iptables -t mangle -A DIVERT -j ACCEPT iptables -t mangle -A PREROUTING -p tcp -m socket -j DIVERT iptables -t mangle -A PREROUTING -p tcp --dport 80 -j TPROXY --tproxy-mark 0x1/0x1 --on-port 3129 конфиг: http_port 3130 http_port 3128 tproxy disable-pmtu-discovery=off http_port 10.99.215.2:3129 intercept acl localnet src 10.0.0.0/8 acl localhost src 127.0.0.0/8 acl bad_url url_regex "/opt/zapret_gov.txt" http_access deny bad_url http_access allow localnet http_access allow localhost http_access deny all deny_info http://10.99.215.1/bl.html bad_url cast [user]val[/user] Импортированно из:https://www.linux.org.ru/forum/admin/11739874 Share this post Link to post Share on other sites
