[sslh] transparent proxy to different host?
Yves Rutschle
yves at rutschle.net
Tue Aug 1 18:51:41 UTC 2017
Hi Jason,
Currently on holiday far away from proxies... I don't think I'll be able to help though, I never really understood the iptable stuff around transparent proxying...
Y.
Y.Le 1 août 2017 16:18, Jason Cooper <sslh at lakedaemon.net> a écrit :
>
> Gentle ping?
>
> On Tue, Jul 25, 2017 at 03:22:09PM +0000, Jason Cooper wrote:
> > Yves,
> >
> > Hope you are doing well. I had a need to use sslh again, and it works
> > great with the sni feature. :) I'm now trying to set up transparent
> > proxying and having a little trouble visualizing what's going on.
> >
> > The setup described in the README.md, afaict, is for sslh and $webserver
> > on the same host. It's not exactly clear. I looked at updating it for
> > TPROXY, but the confusing part is, the TPROXY howto
> > (linux.git/Documentation/networking/tproxy.txt) used the exact same
> > routing rules over loopback. :-/
> >
> > Could you describe the scenario used in the README.md? And how it would
> > change for sending to $webserver on a different host?
> >
> > I'm also completely lost as to why you are adding the rules to the
> > OUTPUT chain and matching on source port = $serverport ...
> >
> > thx,
> >
> > Jason.
> >
> > _______________________________________________
> > sslh mailing list
> > sslh at rutschle.net
> > http://rutschle.net/cgi-bin/mailman/listinfo/sslh
>
> _______________________________________________
> sslh mailing list
> sslh at rutschle.net
> http://rutschle.net/cgi-bin/mailman/listinfo/sslh
More information about the sslh
mailing list