[sslh] transparent proxy to different host?
Jason Cooper
sslh at lakedaemon.net
Tue Jul 25 15:22:09 UTC 2017
Yves,
Hope you are doing well. I had a need to use sslh again, and it works
great with the sni feature. :) I'm now trying to set up transparent
proxying and having a little trouble visualizing what's going on.
The setup described in the README.md, afaict, is for sslh and $webserver
on the same host. It's not exactly clear. I looked at updating it for
TPROXY, but the confusing part is, the TPROXY howto
(linux.git/Documentation/networking/tproxy.txt) used the exact same
routing rules over loopback. :-/
Could you describe the scenario used in the README.md? And how it would
change for sending to $webserver on a different host?
I'm also completely lost as to why you are adding the rules to the
OUTPUT chain and matching on source port = $serverport ...
thx,
Jason.
More information about the sslh
mailing list