squid проблемы с tproxy

ne-vlezay80 · June 30, 2015

У меня нистроет TPROXY в сквирд до следующей инструкции:

ip -f inet rule add fwmark 1 lookup 100
ip -f inet route add local default dev eth0 table 100

iptables -t mangle -N DIVERT
iptables -t mangle -A DIVERT -j MARK --set-mark 1
iptables -t mangle -A DIVERT -j ACCEPT

iptables  -t mangle -A PREROUTING -p tcp -m socket -j DIVERT

iptables  -t mangle -A PREROUTING -p tcp --dport 80 -j TPROXY --tproxy-mark 0x1/0x1 --on-port 3129

конфиг:

http_port 3130
http_port 3128 tproxy disable-pmtu-discovery=off
http_port 10.99.215.2:3129 intercept
acl localnet src 10.0.0.0/8
acl localhost src 127.0.0.0/8
acl bad_url url_regex "/opt/zapret_gov.txt"
http_access deny bad_url

http_access allow localnet
http_access allow localhost
http_access deny all

deny_info http://10.99.215.1/bl.html bad_url

cast [user]val[/user]

Импортированно из:https://www.linux.org.ru/forum/admin/11739874

Sign In

squid проблемы с tproxy

Recommended Posts

ne-vlezay80

Join the conversation