[sslh] Plan to integrate IP_TRANSPARENT
Yves Rutschle
yves at naryves.com
Fri Jul 5 21:58:51 CEST 2013
On Fri, Jul 05, 2013 at 02:41:20PM +0200, Yves Rutschle wrote:
> There is a patch to do this here:
> http://rutschle.net/pipermail/sslh/2013-February/000299.html
>
> and Antonia managed to get it working:
> http://rutschle.net/pipermail/sslh/2013-April/000308.html
>
> I personally haven't managed it, but the link you posted
> mentions it cannot work if you target localhost, which I
> did, so I'll need to try that again.
Ok, I confirm that the patch works, you just have to target
addresses that aren't localhost. This means you can't have
Apache listen to localhost:443, but I guess that a small
price to pay to get transparent proxy-ing.
I'll start cleaning up the patch and porting it to
sslh-select and add instructions to README, and release a
new version at some point.
Cheers,
Y.
More information about the sslh
mailing list