Date: Mon, 28 Oct 2002 21:04:20 +0700 From: "zulkarnain" <sizulku@telkom.net> To: questions@FreeBSD.ORG Subject: ipnat redirection problem Message-ID: <web-284422@b2.c.plasa.com>
next in thread | raw e-mail | index | archive | help
Hi,
I'm trying to configure out the transparent proxy with
ipnat-redirection
rdr fxp1 0/0 port 80 -> 202.167.aaa.ccc port 3128
but this scheme isn't working fine.
When I go (through PC1) to some web servers, I get error
about inaccessibility web server at client browser.From
freebsd box I see (using ipnat -l)any packets redirect to
squid box, but at squid box I did not see any packets from
freebsd box.
What can I do at this situation? Can anybody push me to
right direction?
Best regards,
zulkarnain
Internet
|
|
-------------------------
| |
SQUID fxp0 202.167.aaa.bbb
202.167.aaa.ccc FreeBSD 4.6
fxp1 202.167.xxx.yyy
|
----------------------------
| | |
PC1 PC2 PC3
202.167.xxx.ddd 202.167.xxx.eee 202.167.xxx.fff
-------- kernel config -----
options IPFIREWALL
options IPFIREWALL_DEFAULT_TO_ACCEPT
options IPFIREWALL_VERBOSE
options IPFIREWALL_VERBOSE_LIMIT=300
options IPFIREWALL_FORWARD
options IPFILTER
options IPFILTER_LOG
-------- /etc/rc.conf -------
ipfilter_enable="YES"
ipnat_enable="YES"
ipmon_enable="YES"
ipfs_enable="YES"
-------- /etc/ipnat.rules ----
rdr fxp1 0/0 port 80 -> 202.167.aaa.ccc port 3128
-------- squid.conf --------
http_port 3128
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
=========================================================================
Ikuti polling TELKOM Memo 166 di www.plasa.com dan menangkan hadiah masing-masing Rp 250.000 tunai.
=========================================================================
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?web-284422>