File tree Expand file tree Collapse file tree 1 file changed +7
-2
lines changed Expand file tree Collapse file tree 1 file changed +7
-2
lines changed Original file line number Diff line number Diff line change @@ -88,9 +88,14 @@ There are some things you need to consider for TPROXY to work:
8888 Otherwise sshuttle may attempt to intercept the ssh packets, which will not
8989 work. Use the `--exclude ` parameter for this.
9090
91- 4. You do need the `--method=tproxy ` parameter, as above.
91+ 4. Similarly, UDP return packets (including DNS) could get intercepted and
92+ bounced back. This is the case if you have a broad subnet such as
93+ ``0.0.0.0/0 `` that includes the IP address of the client. Use the
94+ `--exclude ` parameter for this.
9295
93- 5. The routes for the outgoing packets must already exist. For example, if your
96+ 5. You do need the `--method=tproxy ` parameter, as above.
97+
98+ 6. The routes for the outgoing packets must already exist. For example, if your
9499 connection does not have IPv6 support, no IPv6 routes will exist, IPv6
95100 packets will not be generated and sshuttle cannot intercept them::
96101
You can’t perform that action at this time.
0 commit comments