diff options
author | Maximilian Hils <git@maximilianhils.com> | 2015-09-07 10:30:40 +0200 |
---|---|---|
committer | Maximilian Hils <git@maximilianhils.com> | 2015-09-07 10:30:40 +0200 |
commit | 31ee4607c892f85c5d139e54acbc3ca4f9fb6bcb (patch) | |
tree | 873629c79b60b0ac0a7dbb458fe6ad82c2e042ef /docs/custom-routing.txt | |
parent | b4013659a81a48908eb3e060f04143ba1f9689bb (diff) | |
download | mitmproxy-31ee4607c892f85c5d139e54acbc3ca4f9fb6bcb.tar.gz mitmproxy-31ee4607c892f85c5d139e54acbc3ca4f9fb6bcb.tar.bz2 mitmproxy-31ee4607c892f85c5d139e54acbc3ca4f9fb6bcb.zip |
remove old docs
Diffstat (limited to 'docs/custom-routing.txt')
-rw-r--r-- | docs/custom-routing.txt | 24 |
1 files changed, 24 insertions, 0 deletions
diff --git a/docs/custom-routing.txt b/docs/custom-routing.txt new file mode 100644 index 00000000..2ba2281f --- /dev/null +++ b/docs/custom-routing.txt @@ -0,0 +1,24 @@ +# Adapted from http://tldp.org/HOWTO/TransparentProxy-6.html (6.2 Second method) +# Note that the choice of firewall mark (3) and routing table (2) was fairly arbitrary. +# If you are already using policy routing or firewall marking for some other purpose, +# make sure you choose unique numbers here. Otherwise, don't worry about it. + + + +# On the router, run + +PROXY_IP=192.168.1.100 +TARGET_IP=192.168.1.110 + +iptables -t mangle -A PREROUTING -j ACCEPT -p tcp -m multiport --dports 80,443 -s ! $TARGET_IP +# Alternative to MITM the whole network: +# iptables -t mangle -A PREROUTING -j ACCEPT -p tcp -m multiport --dports 80,443 -s $PROXY_IP +iptables -t mangle -A PREROUTING -j MARK --set-mark 3 -p tcp -m multiport --dports 80,443 +ip rule add fwmark 3 table 2 +ip route add default via $PROXY_IP dev br0 table 2 + + + +# On the proxy machine, run + +iptables -A PREROUTING -t nat -i eth0 -p tcp -m multiport --dports 80,443 -j REDIRECT --to-port 8080 |