From owner-freebsd-questions  Sun Jan  4 04:26:32 1998
Return-Path: <owner-freebsd-questions>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id EAA21244
          for questions-outgoing; Sun, 4 Jan 1998 04:26:32 -0800 (PST)
          (envelope-from owner-freebsd-questions)
Received: from opengovt.open.org (opengovt.open.org [199.2.104.1])
          by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id EAA21209
          for <freebsd-questions@freebsd.org>; Sun, 4 Jan 1998 04:26:24 -0800 (PST)
          (envelope-from clark@open.org)
Received: (from root@localhost)
	by opengovt.open.org (8.8.7/8.8.7) id EAA11134;
	Sun, 4 Jan 1998 04:13:44 -0800 (PST)
Received: from opengovt17.open.org(199.2.104.17) by opengovt.open.org via smap (V2.0)
	id xmaj11061; Sun, 4 Jan 98 04:13:01 -0800
Received: from localhost (clark@localhost)
	by open.org (8.8.7/8.8.7) with SMTP id OAA00694;
	Sat, 3 Jan 1998 14:53:30 -0800 (PST)
	(envelope-from clark@orthanc.off.net)
Date: Sat, 3 Jan 1998 14:53:29 -0800 (PST)
From: Robert Clark <clark@open.org>
To: Frank Mayhar <frank@exit.com>
cc: freebsd-questions@freebsd.org
Subject: Re: Forwarding IP wierdly.
In-Reply-To: <199712310511.VAA20231@exit.com>
Message-ID: <Pine.BSF.3.96.980103144721.408K-100000@orthanc.off.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk


One of my friends used tcpdump or the like to figure out where the updates
come from, and once that is known things get easy.

Once you have the update file, grabbed via ftp, you can put it onto the
workstations anyway you like. 

I think he has the file in some readonly publicly available spot, and some
mechanism to copy the file down to the client whenever a newer one shows
up.

I can ask for more details if you like.

						[RC]

 On Tue, 30 Dec 1997, Frank Mayhar wrote:

> I don't know if it's possible, but I need to do a wierd kind of IP forwarding.
> I have an internal network that uses a private, unrouted set of addresses
> (206.223.0, as it happens).  One system has addresses on the internal network
> and on an external, routed network.  I have another system on the internal
> network that has an application that insists on talking via http to an
> external system.  I can't convince it to use a proxy.  Is there any way for
> the dual-homed system to intercept those packets, rewrite them with its own
> IP address, send them out again, receive the replies, rewrite them with the
> right IP address, and send _those_ out again?  It seems straightforward, and
> I thought there was probably something already written, rather than having
> to write something myself.
> 
> Else, if someone can tell me how to convince MacAfee VirusScan to use a proxy
> to update itself, that would work, too.  (Although I still have uses for the
> thing above.)  Oh, and I know about udprelay; I need this for TCP.
> 
> Thanks in advance.
> -- 
> Frank Mayhar frank@exit.com
> 
>