Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 28 Jul 2004 09:50:17 +0100
From:      Matthew Seaman <m.seaman@infracaninophile.co.uk>
To:        fred@bsdhost.net
Cc:        questions@freebsd.org
Subject:   Re: ip traffic redirection.
Message-ID:  <20040728085016.GB72137@happy-idiot-talk.infracaninophile.co.uk>
In-Reply-To: <671075AC-E06F-11D8-B215-000A9575BCC8@bsdhost.net>
References:  <41075B49.10005@softjoys.com> <671075AC-E06F-11D8-B215-000A9575BCC8@bsdhost.net>
next in thread | previous in thread | raw e-mail | index | archive | help 

--XF85m9dhOBO43t/C
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Wed, Jul 28, 2004 at 10:23:28AM +0200, fred@bsdhost.net wrote:

> This is maybe the wrong list for this question but anyway...

No -- this is the right list for questions.

> For a proof of concept I need to setup a gateway to divert certain kind=
=20
> of ip traffic to a special program who do some counting and=20
> modification on these packets and then re-inject them back. This has to=
=20
> be a gateway and not a router.

Yes, that's doable.  It sounds very much like transparent proxying.
So long as you can select the traffic you want to process solely by
examining the IP headers it should be easy.  Of course, the process
you feed the selected packets to can do whatever it wants with them
and can be programmed to decode packet payloads as required.
=20
> Does someone know if there is a package un the FreeBSD ports who can=20
> help me do that? Can I do that using ipfw and in that case can someone=20
> send me a pointer to some docs or examples ?

What you want to do sounds very much like transparent proxying.  That
can be implemented fairly simply under FreeBSD using, for example
ipfw(8)'s 'fwd' mechanism.

There's a nics discussion in the Squid FAQ which you should be able to
mine for clues:

    http://www.squid-cache.org/Doc/FAQ/FAQ-17.html

	Cheers,

	Matthew

--=20
Dr Matthew J Seaman MA, D.Phil.                       26 The Paddocks
                                                      Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey         Marlow
Tel: +44 1628 476614                                  Bucks., SL7 1TH UK

--XF85m9dhOBO43t/C
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (FreeBSD)

iD8DBQFBB2jIiD657aJF7eIRAq84AJ9S5xV7IPcA4YI05xojbg96cqbX+gCgsCHC
AHK22pByxIbxOKPlBDLCAkg=
=uXGr
-----END PGP SIGNATURE-----

--XF85m9dhOBO43t/C--

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040728085016.GB72137>