[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Transparently anonymizing traffic iptables problem

https://wiki.torproject.org/noreply/TheOnionRouter/TransparentProxy :


2.1. Transparently anonymizing traffic for a specific user

iptables -t nat -A OUTPUT -p tcp -m owner --uid-owner anonymous -m tcp --syn -j REDIRECT --to-ports 9040 

iptables -t nat -A OUTPUT -p udp -m owner --uid-owner anonymous -m udp --dport 53 -j REDIRECT --to-ports 53 

iptables -t nat -A OUTPUT -m owner --uid-owner anonymous -j DROP


But last iptables rule will not working anymore.

Iptables warning:

The "nat" table is not intended for filtering, hence the use of DROP is deprecated and will permanently be disabled in the next iptables release. Please adjust your scripts.

What's better iptables rule for *specific* user?