Вопросы Теги

использование redsocks в ubuntu 16.04 проблемы с переадресацией портов в iptables

Привет, я пытаюсь использовать redsocks в ubuntu 16.04, используя ту же конфигурацию, которая работает в debian, opensuse и более старых дистрибутивах ubuntu. но кажется, что с ufw правила iptable перестают работать, и это больше не работает на ubuntu 16.04

redsocks.conf

base { log_debug = on; log_info = on; log = "/var/log/resocks.log"; log = "syslog:daemon"; daemon = on; user = redsocks; group = redsocks; redirector = iptables; } redsocks { /* `local_ip' defaults to 127.0.0.1 for security reasons, * use 0.0.0.0 if you want to listen on every interface. * `local_*' are used as port to redirect to. */ local_ip = 127.0.0.1; local_port = 5123; // `ip' and `port' are IP and tcp-port of proxy-server ip = proxy; port = 3128; // known types: socks4, socks5, http-connect, http-relay type = http-relay; login = "user"; password = "pass"; } redsocks { /* `local_ip' defaults to 127.0.0.1 for security reasons, * use 0.0.0.0 if you want to listen on every interface. * `local_*' are used as port to redirect to. */ local_ip = 127.0.0.1; local_port = 5124; // `ip' and `port' are IP and tcp-port of proxy-server ip = proxy; port = 3128; // known types: socks4, socks5, http-connect, http-relay type = http-connect; login = "user"; password = "pass"; } redsocks { /* `local_ip' defaults to 127.0.0.1 for security reasons, * use 0.0.0.0 if you want to listen on every interface. * `local_*' are used as port to redirect to. */ local_ip = 127.0.0.1; local_port = 5125; // `ip' and `port' are IP and tcp-port of proxy-server ip = proxy; port = 3128; // known types: socks4, socks5, http-connect, http-relay type = socks5; login = "user"; password = "pass"; }

redsocks.conf [ ! d3] *nat :PREROUTING ACCEPT [0:0] :INPUT ACCEPT [0:0] :OUTPUT ACCEPT [0:0] :POSTROUTING ACCEPT [0:0] -A OUTPUT -d 10.0.0.0/8 -j RETURN -A OUTPUT -d 127.0.0.0/8 -j RETURN -A OUTPUT -d 192.168.0.0/16 -j RETURN -A OUTPUT -o eth0 -p tcp -m tcp --dport 80 -j DNAT --to-destination 127.0.0.1:5123 -A OUTPUT -o eth0 -p tcp -m tcp --dport 443 -j DNAT --to-destination 127.0.0.1:5124 -A OUTPUT -o eth0 -p tcp -m tcp --dport 465 -j DNAT --to-destination 127.0.0.1:5124 -A OUTPUT -o eth0 -p tcp -m tcp --dport 993 -j DNAT --to-destination 127.0.0.1:5124 -A OUTPUT -o eth0 -p tcp -m tcp --dport 995 -j DNAT --to-destination 127.0.0.1:5124 -A OUTPUT -o eth0 -p tcp -m tcp --dport 5222 -j DNAT --to-destination 127.0.0.1:5124 COMMIT

0
задан 10 May 2017 в 19:09

0 ответов

Другие вопросы по тегам:

Похожие вопросы: