On 20/03/2012 6:31 p.m., Vishal Agarwal wrote:
Hi Amos,
You are right.
Will this work with transferring all the traffic to http port from iptables ?
Iptables -t nat -A PREROUTING -s 192.168.1.0/24 -p tcp --dport 80 -j REDIRECT
--to-destination serverip:3128
REDIRECT takes a port, and assigns the traffic to the box primary IP at
that port. If you want to specify particular IP:port use DNAT.
However, port-443 traffic does not flow over port-80 and is a very
different beasty for intercept to deal with considering all that TLS armour.
Amos