Are you browsing from the same machine on which iptables rules is running or is that your gateway? As my first check would be the (-i eth1) part.
Try to trace the traffic as you request (tcpdump on the [correct] interface and on lo ) and check the pkt counts (-vL) on your rule to detect if it's matching. If they are going forwardly correct, are they coming back correctly? .. etc. Keep us posted. On 8/22/07, Ala'a Ibrahim <[EMAIL PROTECTED]> wrote: > > Hi, > I have an iptables question. > I have a website(s) that are locked by a certain proxy that I want to > access, I used ssh forwarding, and I can open them easily using > ssh -L 3080: lockedsite.com:80 [EMAIL PROTECTED] > > now the thing is that I don't want to fix pages on every request, I don't > want to change the lockedsite.com to 127.0.0.1:3080 on each request, I > know I can do this with iptables, but it doesn't seam to work, what I need > is a rule that for every request on a certain site, it forwards the request > to 127.0.0.1 port 3080 or what ever. > I tried > $ iptables -t nat -A PREROUTING -p tcp -i eth1 -d blockedsiteIP -dport 80 > -j DNAT --to 127.0.0.1:3080 > > but for some reason it's not working, I tried some other stuff I found on > google, but no use. > any idea how to do it? > > -- > Ala'a A. Ibrahim > http://guru.alaa-ibrahim.com/ > > > -- abulyomon www.KiLLTHeUPLiNK.com --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Jolug" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/Jolug?hl=en-GB -~----------~----~----~----~------~----~------~--~---
