On 08/07/2015 04:09 PM, Petter Reinholdtsen wrote: > > [Sunil Mohan] >> Can we not have Tor listen on 0.0.0.0:9050 even when transparent >> proxying is enabled? > > Sure, but I am unsure how that will work with iptables redirects. >
Services (web, mumble, etc.) provided on FreedomBox should still be accessible after enabling transparent proxy. To make this happen I imagine that the transparent proxy iptables rule will exclude the current host from the destination list for transparent proxying. Something like: origin:any to destination:!currenthost -> proxy. If the rule is written in the FORWARDING table, I think a packet will not enter the chain if it is meant for the localhost. However, I a bit rusty on the topic. -- Sunil
signature.asc
Description: OpenPGP digital signature
