[Shorewall-users] tranparent proxy

Tom Eastep teastep@shorewall.net
Fri, 19 Apr 2002 08:54:00 -0700 (PDT)


On 19 Apr 2002, Manuel Pompeia Santos wrote:

> Thanks for the quick response.
> But the thing is that the client isn't the local network, but the
> firewall itself.
> 

You can try the following:

ACCEPT	fw	fw::8080	tcp	80	-	all

I know that DNAT in the OUTPUT chain is broken in NetFilter but I'm not sure about 
REDIRECT. 

Why do you want to do this? Site filtering?


-Tom
--
Tom Eastep    \ Shorewall - iptables made easy
AIM: tmeastep  \ http://www.shorewall.net
ICQ: #60745924  \ teastep@shorewall.net