Jurke
Reputation: 31
Route outcoming traffic to mitmdump
I want to route, using iptables, all the OUTGOING HTTP requests from my machine to mitmdump running on the same machine, and then to the original destination.
I'm using this iptables rule but it seems that it doesn't work:
$ sudo iptables -t nat -A OUTPUT -p tcp --dport 80 -j DNAT --to-destination 127.0.0.1:8080
Can somebody explain me why it isn't the right solution and what is the correct way to accomplish this?
Upvotes: 1
Views: 2106
Answers (2)
Jurke
Reputation: 31
Solved using the owner module of iptables:
iptables -t nat -A OUTPUT -p tcp --dport 80 -m owner ! --uid-owner 0 -j DNAT --to 127.0.0.1:8080
And then launch mitmdump as root. Or better create a new user for mitmdump and replace 0 with the uid of the user.
Upvotes: 2
javabrett
Reputation: 7676
In accordance with http://docs.mitmproxy.org/en/stable/transparent/linux.html , you want to add those rules to the PREROUTING table:
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 8080
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 443 -j REDIRECT --to-port 8080
Upvotes: -1
Related Questions
- Dump packets collected with mitmproxy
- How to stream response in mitmproxy
- How to capture or view SMTP and other non HTTP traffic in proxy application?
- mitmproxy not showing traffic for android app
- mitmdump replacement pattern construction
- how to send traffic from mitmproxy to another proxy server
- How to redirect all mitmproxy HTTP traffic to a specific HTTP server?
- How can I use iptables to make a TCP proxy between me and a outside service?
- mitmproxy configuration to intercept HTTPS
- Running mitmproxy on macOS Sierra: traffic not passing through