03-08-2013
Well, most simple tcp protocols like http and websockets should run fine with port forwarding using iptables or tcp_relay or with iptables or other firewall NAT if just the host needs to change. The method for tcp_relay is to listen on the firewall or other exposed host on port A and for every connection, make a new connection to host B port C and a processs to shuffle data to and from the sockets. NAT and iptables work at the packet level, just rewriting and forwarding packets.
I recall an article came through just recently of someone who wanted to prot forward. Google is your friend if you know the key words. There are many tutorials out there.
9 More Discussions You Might Find Interesting
1. Red Hat
Hi,
I am having windows proxy server and it is having proxy.pac file, so for accessing internet we are using automatic proxy url setting in the browser (http://windowsservername/file.pac).
Now my requirement is if I want to set the proxy settings in linux server from the cmd line how can I... (1 Reply)
Discussion started by: ktrimu
1 Replies
2. Linux
Hello everyone,
I've installed squid proxy server in Linux centos machine for users.actually problem is when users browse some websites eg : WordPress.org, gravatar.com it loads very slow compare to others sites .my line is 4mbps and only 6 users for it.I've bypassed squid for myself via... (3 Replies)
Discussion started by: afybiz
3 Replies
3. UNIX for Dummies Questions & Answers
HI Expert, :confused:
CAn some1 guide me how to run a program automatically whenever the PC/Server is rebooted ?
Im not sure where to start from. PLease refer to the pic attached and do help me. Thanks in advance
---------------------------------------------------- (11 Replies)
Discussion started by: crazydude80
11 Replies
4. Web Development
I am having a hard time with this one. We have a websocket server listening on port 80 at myserver.com/wsDemo?ID=12. We need to test a client program by connecting it to this server through a proxy. I am trying nginx 1.2.7 as the proxy on port 8080, running on proxy-server. We want the client to... (1 Reply)
Discussion started by: glev2005
1 Replies
5. Linux
Hi we have Centos Server and we have client machines using Ubuntu 12.04 and Win7,I Have Configured Squid only purposely for facebook denied, Cos User;s often being in fb so need to do it, have configured squid as transpernt , followed this How to install squid proxy on centos 6 steps to did it and... (1 Reply)
Discussion started by: babinlonston
1 Replies
6. Linux
Hi we have Centos Server and we have client machines using Ubuntu 12.04 and Win7,I Have Configured Squid only purposely for facebook denied, Cos User;s often being in fb so need to do it, have configured squid as transparent , followed this How to install squid proxy on centos 6 steps to did it and... (2 Replies)
Discussion started by: babinlonston
2 Replies
7. Red Hat
HI,
I have a Centos linux box and there is interface connect to internet.
I stop the iptables in this box .
After a few day , I find the linux box have been hacked and install some perl script into the box .
Could anyone tell me how the hacker can login into the centos box without knowing... (1 Reply)
Discussion started by: chuikingman
1 Replies
8. UNIX for Advanced & Expert Users
Hello,
We are migrating our gateways from CentOS 6 to CentOS 7 and for setting up a transparent proxy using squid and Firewalld i am using below configuration.
#Firewalld configurations
firewall-cmd --permanent --zone=public --add-forward-port=port=80:proto=tcp:toport=3128:toaddr=LAN_IP... (4 Replies)
Discussion started by: sunnysthakur
4 Replies
9. Linux
Hello,
Did anyone setup a CentOS7 as a gateway (with squid transparent proxy).
I am trying to do so but not able to setup.
I setup squid , iptables (using it instead of firewalld) and all the necessary IPtables rules but nothing work.
It work previously but access.log of squid not getting... (4 Replies)
Discussion started by: sunnysthakur
4 Replies
LEARN ABOUT DEBIAN
arno-iptables-firewall
ARNO-IPTABLES-FIREWALL(8) ARNO-IPTABLES-FIREWALL(8)
NAME
arno-iptables-firewall - Single- & multi-homed firewall script with DSL/ADSL support.
SYNOPSIS
/etc/init.d/arno-iptables-firewall [start|stop|status|force-reload|restart]
DESCRIPTION
arno-iptables-firewall is an iptables configuration script with support for both IPv4 & IPv6. While it is extremely easy to use one can
nevertheless use it in quite complicated environments.
All available options are explained in the extensively documented configuration file.
The external interface of the system needs to be set up properly in the firewalls configuration file (EXT_IF). The default behavior of the
firewall is to deny all incoming connections.
For additional requirements not covered by the configuration file custom iptables rules can be placed in /etc/arno-iptables-firewall/cus-
tom-rules. This file is automatically parsed by the service script.
See the README file (eg. in /usr/(local/)share/doc/arno-iptables-firewall) for an example how to manage logging of firewall events through
syslogd.
The arno-fwfilter script can be used to make the firewall logs more readable for humans (see manpage).
Several plugins for the firewall script are available online. Plugins can be downloaded from http://rocky.eld.leidenuniv.nl/ Please see the
README file for more information.
FILES
/etc/init.d/arno-iptables-firewall system service script
/etc/arno-iptables-firewall/firewall.conf firewall configuration
/etc/arno-iptables-firewall/conf.d/ firewall configuration directory
/etc/arno-iptables-firewall/custom-rules custom iptables rules
/etc/arno-iptables-firewall/blocked-hosts host blacklist
/etc/arno-iptables-firewall/mac-addresses mac filter list
Please note, that the last two files do exist in the initial configuration and their use is disabled in /etc/arno-iptables-firewall/fire-
wall.conf
SEE ALSO
iptables(8), arno-fwfilter(1), syslog.conf(5)
The http://rocky.eld.leidenuniv.nl/ web site.
AUTHOR
arno-iptables-firewall was written by Arno van Amersfoort <arnova@rocky.eld.leidenuniv.nl>.
This manual page was written by Michael Hanke <michael.hanke@gmail.com>, for the Debian project (but may be used by others).
Michael Hanke March 14, 2012 ARNO-IPTABLES-FIREWALL(8)