کاری که Tproxy انجام میده به این شرحه
Real transparent proxying requires the following three features from
the IP stack of the computer it is running on:
1. Redirect sessions destined to the outer network to a local process
using a packet filter rule.
2. Make it possible for a process to listen to connections on a
foreign address.
3. Make it possible for a process to initiate a connection with a
foreign address as a source.
Item #1 is usually provided by packet filtering packages like
Netfilter/IPTables, IPFilter. (yes, this is the REDIRECT target)
All three were provided in Linux kernels 2.2.x, but support for this
was removed.
خب من هم از کرنل 2.8.15 استفاده می کنم