Date: Thu, 24 May 2007 17:05:08 -0700 From: Julian Elischer <julian@elischer.org> To: G E E K <igeek@msn.com> Cc: antonio.tommasi@unile.it, freebsd-net@freebsd.org Subject: Re: Bridge transparent proxy Message-ID: <46562834.5070007@elischer.org> In-Reply-To: <465626CF.9030907@elischer.org> References: <BAY5-F6E8590C2982A33E305D5FA0340@phx.gbl> <465626CF.9030907@elischer.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Julian Elischer wrote: > G E E K wrote: >> >> >> Did you check if the bridge.ko and ipfw.ko modules are loaded with the >> kernel or not? >> >> Regards, >> Saleh >> >> >>> From: Antonio Tommasi <antonio.tommasi@unile.it> >>> To: freebsd-net@freebsd.org >>> Subject: Bridge transparent proxy >>> Date: Thu, 24 May 2007 07:06:54 +0200 >>> >>> Hi to all i'm trying to installa a bridge transparent proxy on a >>> freebsd 6.2 with ipfw and squid. >>> I have two machine; >>> on the first one i've enabled option bridge in kernel option and >>> then i've recompile it and set variable sysctl in /etc/sysctl.conf >>> on the second i've set bridge_load module on the boot/loader.conf and >>> set the same variable from above in /etc/sysctl.conf >>> Naturally i've used the correct name of network interface in the >>> configuration file on the two machine. >>> I've the same configuration in firewall rules and squid in the two >>> machine. >>> It works only on the machine with the kernel recompiled with bridge >>> module. >>> Somebody can help me? >>> Thanks in advance >>> Antonio > > you can not do 'fwd' in a bridge. > (I assume htat is what you want to do) > you need to be routing.. > > bridges do everythign at layer2 > fwd only works at layer3. I just reread the original mail.. I'm surprised it works on the fully compiled in machine.. but assuming that what you do does work, then It could be that unless you compile it fully, you will not get IP_FIREWALL_FORWARD so the IP stack will not have the appropriate changes in it. > > >>> _______________________________________________ >>> freebsd-net@freebsd.org mailing list >>> http://lists.freebsd.org/mailman/listinfo/freebsd-net >>> To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" >> >> _________________________________________________________________ >> Express yourself instantly with MSN Messenger! Download today it's >> FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/ >> >> _______________________________________________ >> freebsd-net@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-net >> To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?46562834.5070007>