Date: Sat, 8 Jul 2006 23:38:55 +0400 From: "Dmitry Andrianov" <dimas@dataart.com> To: "Gergely CZUCZY" <phoemix@harmless.hu> Cc: freebsd-pf@freebsd.org Subject: RE: proxies Message-ID: <D5972F49810A69449A9EA72A4B360DC2D0A38B@e1.universe.dart.spb>
next in thread | raw e-mail | index | archive | help
> we do it a bit different way.
> man ftp-proxy
Well, it is _completely_ different way. It is only applicable on the
gateway router (which performs NAT) but can not be used on our internal
router because this way FTP server does not see client's real IP.
There are two different things:=20
a) punching holes in the firewall to accept related connections
b) "patching" traffic to translate Ips contained in the application
level data
On the NAT-less router I obviously only need first. The approach you
suggesting always do both and there is no way of avoiding second.
> that's for FTP, but a similar program can be constructed for different
protocolls
Actually, my question was if PPTP, H323 etc modules _already_ available.
>From your anwser I guess no...
Thanks
Regards,
Dmitry Andrianov
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?D5972F49810A69449A9EA72A4B360DC2D0A38B>