[sslh] Transparent proxying with two IP
Anonymous
Anonymous
Thu Feb 4 11:31:27 UTC 2016
Hello,
The transparent option don't work on my configuration, i launch sslh
on a linux container ( I have a server with proxmox on only one public
ip )
I have setup my iptables like this :
iptables -t mangle -N SSLH
iptables -t mangle -A OUTPUT --protocol tcp --out-interface eth0
--sport 822 --jump SSLH
iptables -t mangle -A OUTPUT --protocol tcp --out-interface eth0
--sport 9443 --jump SSLH
iptables -t mangle -A SSLH --jump MARK --set-mark 0x1
iptables -t mangle -A SSLH --jump ACCEPT
ip rule add fwmark 0x1 lookup 100
ip route add local 0.0.0.0/0 dev lo table 100
I launch sslh with this comand :
sslh -v --transparent --listen 0.0.0.0:443 --ssh 192.168.1.4:822 --ssl
192.168.1.5:9443
The private ip of the container with sslh and nginx is 192.168.1.5 and
my ssh server is on 192.168.1.4
Nginx work great with the transparent option but my ssh don't work.
If i don't use the transparent option the ssh work great on
192.168.1.4 but i don't have log for fail2ban.
You can help me ?
Best regards.
More information about the sslh
mailing list