nginx官网说明:
The transparent parameter (1.11.0) allows outgoing connections to a proxied server originate from a non-local IP address, for example, from a real IP address of a client:
proxy_bind $remote_addr transparent;
In order for this parameter to work, it is necessary to run nginx worker processes with the superuser privileges and configure kernel routing table to intercept network traffic from the proxied server.
目前调试发现,当客户端与nginx处于同一机器上时,透明代理转发功能是正常的,但是当客户端与nginx处于不同机器,那么nginx发送的syn不被代理机器响应,问题是:怎么配置内核路由才能实现透明转发?