[Fwbuilder-discussion] Redirecting but from single interface
Brought to you by:
mikehorn
Menu
▾
▴
[Fwbuilder-discussion] Redirecting but from single interface
|
From: Clemente A. <ca...@ma...> - 2008-07-11 10:13:28
|
We are in the process of configuring a transparent web cache using the wccp protocol between the router and the cache. There are all sorts of configurations, including a REDIRECT using iptables. We have configured it manually and all is working, but before we put it into production we want to configure some extra FW rules on the cache machine. Of course we would prefer to do this with the same tool as for all the other FWs. I saw the example in the manual "10.7. Redirecting the traffic" which redirects from port 80 to port 3128, independently of the interface resulting in the following iptables command: iptables -A PREROUTING -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 3128 However I want to restrict the redirect of traffic from a single interface (the wccp0 interface), such as: iptables -A PREROUTING -i wccp0 -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 3128 Can this be achieved using FW Builder? How? Clemente |