Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 10 Jun 2002 22:39:24 -0500 (CDT)
From:      Nick Rogness <nick@rogness.net>
To:        Alexey Privalov <lucky@land3.nsu.ru>
Cc:        freebsd-ipfw@FreeBSD.ORG
Subject:   Re: natd & trans proxy
Message-ID:  <Pine.BSF.4.21.0206102233430.38288-100000@cody.jharris.com>
In-Reply-To: <20020610101352.Y47747-100000@land3.nsu.ru>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
On Mon, 10 Jun 2002, Alexey Privalov wrote:

> hi all.
> 
> i`m running two natd`s on rl3 (external) and rl0 (internal).
> 

> the first natd is running on 8668 (standart) port and is diverting
> private ip to ip on interface and have following configuration:
> 	interface rl3
> 	unregistered_only yes
> 	use_sockets yes
> 	same_ports yes
> 

	OK.

> 
> 
> the second natd have a following configuration:
> 	port 8669
> 	proxy_only
> 	proxy_rule port 80 server proxy_addr:8888
> 	interface rl0
> 
> and is forwarding to squid.
> 
> why when interface rl0 receive http packet then it divert ip to external.
> 

	You should not be using natd to do the forwarding to your proxy
	server, since you don't want to change header info in the
	packet.  You only want to forward it to your proxy server so use
	ipfw fwd instead...that will resolve all of your issues.

	There are several examples online and within the mailing list
	archives that describe how to do this properly.

	PS.  Please don't cross-post to multiple lists.  Besides, this
	question belongs on freebsd-questions anyway.

Nick Rogness <nick@rogness.net>
 - Don't mind me...I'm just sniffing your packets



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ipfw" in the body of the message




Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0206102233430.38288-100000>