Iptables

sanjibgupta · 11-27-2014, 03:31 AM

Hi
I am working on captive portal for a wired network.
In iptables
/sbin/iptables -t nat -A PREROUTING -m mark --mark 99 -p tcp --dport 80 -j DNAT --to-destination xx.xx.xx.xx

It is working fine with for http port

I want that users trying crossing my proxy server (for https ftp etc) should also dnat to destination xx.xx.xx.xx to get them authenticated

linuxgurusa · 11-27-2014, 03:42 AM

That must be done on the proxy server itself, nothing to do with your firewall.

So the server xx.xx.xx.xx which is your proxy, and you confirmed that the redirect is working, must do the authentication.
So different problem for you

sanjibgupta · 11-27-2014, 03:52 AM

No my problem is only port 80 is being redirected to destination xx.xx.xx.xx
I need to redirect all other ports also to destination xx.xx.xx.xx

linuxgurusa · 11-27-2014, 03:59 AM

Quote:

Originally Posted by sanjibgupta

No my problem is only port 80 is being redirected to destination xx.xx.xx.xx
I need to redirect all other ports also to destination xx.xx.xx.xx

/sbin/iptables -t nat -A PREROUTING -m mark --mark 99 -p tcp --dport 80:500 -j DNAT --to-destination xx.xx.xx.xx

Above is from port 80 to port 500 etc

sanjibgupta · 11-27-2014, 04:14 AM

when i do https://yahoo.com
it say private connection ans shows an NE:ERR_CERT_AUTHORITY_INVALID
when i press the RELOAD button it shows my destination page and soon return back to the same page

sanjibgupta · 11-27-2014, 04:36 AM

Sorry Sorry
It is working in IE but not in Chrome
Can you please tell me why