OpenDPI and iptables integration
427 views
Skip to first unread message
voidptrptr
Sep 22, 2011, 3:40:11 AM9/22/11
to opendpi
Hi guys,
First of all, thanks for OpenDPI. I successfully install it on F14.
After reading the doc, I faced a problem to redirect HTTP traffic
using OpenDPI as netfilter wrapper.
The idea is to redirect all my incoming HTTP taffic to my local squid
proxy running port 3128.
The following iptables rule works perfectly:
iptables -t nat -A PREROUTING -p tcp -m tcp --dport 80 -j DNAT --to-
destination 192.168.1.55:3128
with it in place, I can run this from another machine:
curl -D - -x 192.168.1.55:80 http://www.yahoo.com/
But this OpenDPI rule doesn't work at all:
iptables -t nat -A PREROUTING -p tcp -m tcp -m opendpi --http -j DNAT
--to-destination 192.168.1.55:3128
Am I missing something?
Is there any example of using OpenDPI with iptables out there?
N.B: please bear with me as I'm new to both OpenDPI and Linux
iptables.
Thanks
/V
First of all, thanks for OpenDPI. I successfully install it on F14.
After reading the doc, I faced a problem to redirect HTTP traffic
using OpenDPI as netfilter wrapper.
The idea is to redirect all my incoming HTTP taffic to my local squid
proxy running port 3128.
The following iptables rule works perfectly:
iptables -t nat -A PREROUTING -p tcp -m tcp --dport 80 -j DNAT --to-
destination 192.168.1.55:3128
with it in place, I can run this from another machine:
curl -D - -x 192.168.1.55:80 http://www.yahoo.com/
But this OpenDPI rule doesn't work at all:
iptables -t nat -A PREROUTING -p tcp -m tcp -m opendpi --http -j DNAT
--to-destination 192.168.1.55:3128
Am I missing something?
Is there any example of using OpenDPI with iptables out there?
N.B: please bear with me as I'm new to both OpenDPI and Linux
iptables.
Thanks
/V
voidptrptr
Sep 22, 2011, 3:57:19 AM9/22/11
to opendpi
Sorry, there was a typo in my previous OpenDPI rule:
iptables -t nat -A PREROUTING -p tcp -m opendpi --http -j DNAT --to-
destination 192.168.1.55:3128
even with that, the problem persist.
On Sep 22, 9:40 am, voidptrptr <voidptr...@gmail.com> wrote:
> Hi guys,
>
> First of all, thanks for OpenDPI. I successfully install it on F14.
>
> After reading the doc, I faced a problem to redirect HTTP traffic
> using OpenDPI as netfilter wrapper.
> The idea is to redirect all my incoming HTTP taffic to my local squid
> proxy running port 3128.
>
> The following iptables rule works perfectly:
> iptables -t nat -A PREROUTING -p tcp -m tcp --dport 80 -j DNAT --to-
> destination 192.168.1.55:3128
>
> with it in place, I can run this from another machine:
> curl -D - -x 192.168.1.55:80http://www.yahoo.com/
iptables -t nat -A PREROUTING -p tcp -m opendpi --http -j DNAT --to-
destination 192.168.1.55:3128
even with that, the problem persist.
On Sep 22, 9:40 am, voidptrptr <voidptr...@gmail.com> wrote:
> Hi guys,
>
> First of all, thanks for OpenDPI. I successfully install it on F14.
>
> After reading the doc, I faced a problem to redirect HTTP traffic
> using OpenDPI as netfilter wrapper.
> The idea is to redirect all my incoming HTTP taffic to my local squid
> proxy running port 3128.
>
> The following iptables rule works perfectly:
> iptables -t nat -A PREROUTING -p tcp -m tcp --dport 80 -j DNAT --to-
> destination 192.168.1.55:3128
>
> with it in place, I can run this from another machine:
voidptrptr
Sep 22, 2011, 5:30:27 PM9/22/11
to opendpi
Any advice guys?
I really need help.
Thanks in advance.
I really need help.
Thanks in advance.
Reply all
Reply to author
Forward
0 new messages