From owner-freebsd-isp  Mon Oct  1 15: 7: 2 2001
Delivered-To: freebsd-isp@freebsd.org
Received: from Thanatos.Shenton.Org (a3.ebbed1.client.atlantech.net [209.190.235.163])
	by hub.freebsd.org (Postfix) with SMTP id 2EEF137B406
	for <freebsd-isp@freebsd.org>; Mon,  1 Oct 2001 15:06:57 -0700 (PDT)
Received: (qmail 35027 invoked by uid 1000); 1 Oct 2001 22:06:55 -0000
To: <freebsd-isp@freebsd.org>
Subject: WWW Proxy which rewrites URLs in the content, returning to Proxy?
From: Chris Shenton <chris@shenton.org>
Date: 01 Oct 2001 18:06:55 -0400
In-Reply-To: <20011001165457.Q46251-100000@mirage.nlink.com.br>
Message-ID: <87elon2eww.fsf@thanatos.shenton.org>
Lines: 42
User-Agent: Gnus/5.0808 (Gnus v5.8.8) Emacs/20.7
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Sender: owner-freebsd-isp@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-isp.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-isp>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-isp>
X-Loop: FreeBSD.org

I'm looking for a web proxy which initially allows a user to enter a
URL, then as expected retrieves the doc, but before presenting to the
user, rewrites any URLs in the doc to force the browser to return
through the proxy to fetch the link.  This is for a firewall type of
application, allowing proxied access to internal resources for
external people.

Example:

User connects to

        http://proxy.example.com

and is asked to authenticate, then types in their desired URL for an
internal site into a web form, like:

        http://internal/foo.html

The proxy would go to the internal server "internal.example.com", grab
the page, and rewrite all URLs in the content from:

        http://internal/bar.html
to
        http://proxy.example.com/proxyservlet?url=http://internal/bar.html

or something similar.  This way the client returns to the proxy box
each time, rather than getting a URL which he can't resolve or can't
get to since it's inside the firewall. This needs to be done for 
A HREF, IMG SRC, external stylesheet references, and any other similar
URL.  (What about BASE? HTTP redirects?  other HTTP header info not
part of the content?)

I'm starting to look into these and found Apache::ProxyStuff (perl),
Muffin (Java), and a couple others. Most seem designed to block access
to some sites based on content, remove banner adverts, etc, rather
than transform content slightly.

Any package suggestions? Pointers to places or lists which would have
more info on this type of thing?

Thanks!


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message