That rule is from sslstrip, just changed ports. Robin On Dec 24, 2012 12:11 AM, "John Strand" <[email protected]> wrote:
> Take a look at the ruleset with sslstrip. > > John Strand > 605-550-0742 > Sent from my phone. > On Dec 23, 2012 5:01 PM, "Robin Wood" <[email protected]> wrote: > >> Hi >> I need an IP tables rule that will catch all traffic going over a >> network bridge and send anything destined to port 80 to 8080. As the >> proxy that will be listening on port 8080 will modify some traffic to >> make it request from the IP of the local machine I'll need the rule to >> ignore requests to port 80 on the IP of the localhost. >> >> This is what I tried as this works with IP forwarding for things like >> ARP spoofing but this doesn't work in this instance, I think because >> there is no routing going on, the traffic is just being passed >> straight through. >> >> iptables -t nat -A PREROUTING -p tcp --destination-port 80 ! -d >> <local-IP> -j REDIRECT --to-port 8080 >> >> With this rule in place, if I drop the -d I can get pages being >> requested from the web server on the local machine to be bounced >> through the proxy. >> >> How do I do it? >> >> Got a few good tools going to be based on this if I can get it to work >> _______________________________________________ >> Pauldotcom mailing list >> [email protected] >> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom >> Main Web Site: http://pauldotcom.com >> > > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com >
_______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
