iptables实现代理功能(不解释,备忘用)



[@tc_132_12 apps]# cat forward.sh
#! /bin/sh

target_host=10.11.132.12
target_port=10086
forward_host=10.10.83.83
forward_port=8080

echo 1 > /proc/sys/net/ipv4/ip_forward
/sbin/iptables -t nat -A PREROUTING -d ${target_host} -p tcp -m tcp --dport ${target_port} -j DNAT --to-destination ${forward_host}:${forward_port}
/sbin/iptables -t nat -A POSTROUTING -d ${forward_host} -p tcp -m tcp --dport ${forward_port} -j SNAT --to-source ${target_host}


#target_host=10.11.132.12
#target_port=10086
#forward_host=10.10.83.83
#forward_port=8080
#DEMO:  http://10.11.132.12:10086/ip138.jsp  =>  http://10.10.83.83:8080/ip138.jsp
#ip138.jsp content is:
#<% out.println("You are "+request.getRemoteAddr()+":"+request.getRemotePort()); %>
[@tc_132_12 apps]#

你可能感兴趣的:(代理,iptables)