From 39ba84d8c6b1af5963131621110ec0b578581a0b Mon Sep 17 00:00:00 2001 From: ftasnetamot Date: Sun, 9 Jun 2024 21:33:47 +0200 Subject: [PATCH] Added svg file corrected link to the diagram in md file --- doc/scenarios-for-simple-transparent-proxy.md | 2 +- doc/sslh-examples-v3.png | Bin doc/sslh-examples-v3.svg | 4017 +++++++++++++++++ 3 files changed, 4018 insertions(+), 1 deletion(-) mode change 100755 => 100644 doc/sslh-examples-v3.png create mode 100644 doc/sslh-examples-v3.svg diff --git a/doc/scenarios-for-simple-transparent-proxy.md b/doc/scenarios-for-simple-transparent-proxy.md index 60aec80..d8e15dd 100644 --- a/doc/scenarios-for-simple-transparent-proxy.md +++ b/doc/scenarios-for-simple-transparent-proxy.md @@ -1,6 +1,6 @@ # Three Scenarios for the simple transparent proxy setup # -![Simple Transparent Proxy Examples](./sslh-examples-v2.png) +![Simple Transparent Proxy Examples](./sslh-examples-v3.png) ## Introduction ## The first example is the configuration, which was described in the previousd document. I omitted the loopback interface "lo" in those diagrams, trying not no overload the picture. diff --git a/doc/sslh-examples-v3.png b/doc/sslh-examples-v3.png old mode 100755 new mode 100644 diff --git a/doc/sslh-examples-v3.svg b/doc/sslh-examples-v3.svg new file mode 100644 index 0000000..781a260 --- /dev/null +++ b/doc/sslh-examples-v3.svg @@ -0,0 +1,4017 @@ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + Viewer does not support full SVG 1.1 + + + + + + + + + + Families + + + + + + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + SYN-ACK-connection + SYN-connection + SYN-connection + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + SYN-connection + SYN-connection + SYN-connection + + + + + + + + + + + + Application Layer + + + + + Server + + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + dummy0D0_IP + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + eth0S0_IP + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + sslh + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + sshd + + + + + + + + + + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + internet + + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + ClientC_IP + + + + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + routingtable + + + + + + + + + + + + + + + Application Layer + + + + + Server1/Router + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + eth0S0_IP + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + sslh + + + + + + + + + + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + internet + + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + ClientC_IP + + + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + routingtable + + + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + eth1S1_IP + + + + + + + + + + + + Application Layer + + + + + Server2 + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + eth0S0_IPS1_IP + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + sshd + + + + + + + + + Application Layer + + + + + Additional S1_IP configuredonly for sshd!Server1 is Default Gatewayback to the internet,no additional configurationneeded + + + + + + + + + + + + + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + internet + + + + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + ClientC_IP + + + + + + + + + + + + + Application Layer + + + + + Server1/Router + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + eth0S0_IP + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + sslh + + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + routingtable + + + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + eth1S1_IP + + + + + + + + + + + Application Layer + + + + + Server2Router + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + sshd + + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + routingtable + + + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + eth1S1_IP + + + + + + + + + + + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + internet + + + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + eth0S0_IPS1_IP + + + + + + + + + Application Layer + + + + + Default Gateway points toeth1so special routing rule mustroute S1_IP back to Server1 + + + + + + + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + connection withoutrouting deflection + SYN-connection + SYN-connection + + + + + + + + Application Layer + + + + + Scenario 1 + Scenario1 + Scenario 2 + Scenario 3 + + + + + + + + Prerouting + + + + + + + + + +Hook + + + + + Version 3 2024-06-07 + SYN-connection + SYN-connection + + + + + + + + Application Layer + + + + + Scenario 2 + Scenario1 + Scenario 2 + Scenario 3 + + + + + + + + + Application Layer + + + + + Scenario 3 + Scenario1 + Scenario 2 + Scenario 3 + + +