On 27.06.2012 00:14, Pawel Mojski wrote:
> W dniu 26-Jun-12 13:40, Pawel Mojski pisze:
>> W dniu 26-Jun-12 12:08, Pawel Mojski pisze:
>>>
>>>
>>> v6priv linux # ebtables -t broute -A BROUTING -i eth0 -p ipv6
>>> --ip-proto tcp --ip-sport 80 -j redirect --redirect-target DROP
>>> For IP filtering the protocol must be specified as IPv4.
>>>
>>
>> Ok, I've found my mistake. I should use --ip6-proto and --ip6-sport.
>> But, now all commands are accepter but traffic could not work.
>> I suppose it might be rp_filter configuration but I can not find any
>> rp_filter switch for ipv6.
>> Is rp_filter for ipv6 is enabled or disabled per default?
> [...]
>
> rp_filter per default is disabled.
> All works fine, is just forgot to bind squid to 3129 port.
>
> So, at the end of the day you have running config for tproxy ipv6 on
> bridge interface.
> I think it might be useful for someone.
>
> Have a nice day to all of you.
>
> Regards;
> Pawel Mojski
Thank you very much for proving this does work :)
Wiki being checked/updated.
Amos
Received on Wed Jun 27 2012 - 00:24:08 MDT
This archive was generated by hypermail 2.2.0 : Wed Jun 27 2012 - 12:00:04 MDT