Date: Sat, 26 Jul 1997 12:48:39 -0700 (PDT) From: "J. Utz" <spaz@u.washington.edu> To: FreeBSD Technical Reader <kernel@acromail.ml.org> Cc: Dan Janowski <danj@3skel.com>, hackers <freebsd-hackers@FreeBSD.ORG> Subject: Re: ipfw divert, transparent proxy Message-ID: <Pine.OSF.3.96.970726124653.26325B-100000@becker1.u.washington.edu> In-Reply-To: <Pine.BSF.3.96.970726122524.9794A-100000@acromail.ml.org>
next in thread | previous in thread | raw e-mail | index | archive | help
hi And the reason u cant use ppp -alias is that this is not a phone line connection... right? john On Sat, 26 Jul 1997, FreeBSD Technical Reader wrote: > > natd is the tool you are looking for -- unfortunately I was running it on > my machine and it would cause a reboot every 10 to 15 minutes. > > On Thu, 24 Jul 1997, Dan Janowski wrote: > > > I am replacing an old TIS firewall that has one very > > interesting feature that I am looking to provide with my > > FreeBSD 2.2.2 box. It is this: > > > > They use ipfs which has the capability of "transparently" doing > > packet re-rerouting and, thereby, proxy transparently. > > > > (This is my understanding from looking at the config for > > about five minutes) > > > > With the TIS firewall set as a client's default router, > > this "transparent" mechanism will take a packet that is > > destined for x.x.x.x:port, where x.x.x.x is an exterior > > Internet address, and essentially drop the IP address and > > deliver the packet to the local "port". > > > > This has some limited usefulness. Some services, like whois, > > that always go to the InterNIC can be automatically proxied. > > In this particular case, AOL (yuck) is the problem. There is no > > proxying for AOL's client, but this transparent mechanism works > > very well. > > > > How can I do this? I know that the current ipfw supports divert > > sockets, but I don't see any references to a general purpose > > proxy (like plug-gw) that supports diverts. Delegate does application > > proxy, but I don't see divert support there. > > > > Any hints? > > > > Thanks, > > > > Dan > > > > -- > > danj@3skel.com > > Dan Janowski > > Triskelion Systems, Inc. > > Bronx, NY > > > > ******************************************************************************* John Utz spaz@u.washington.edu idiocy is the impulse function in the convolution of life
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.OSF.3.96.970726124653.26325B-100000>