Date: Thu, 09 Sep 2010 08:18:12 -0700 From: Julian Elischer <julian@elischer.org> To: Ian Smith <smithi@nimnet.asn.au> Cc: freebsd-ipfw@freebsd.org, Tony <rigstars@gmail.com> Subject: Re: All in one machine running w/ Dansguardian+Squid+IPFW Message-ID: <4C88FAB4.4060401@elischer.org> In-Reply-To: <20100909162334.N92609@sola.nimnet.asn.au> References: <AANLkTi=9r4OK0brNKFzGC42joqa1U%2B_PTaXQU8y%2BE-%2Bx@mail.gmail.com> <4C88188A.8010903@elischer.org> <AANLkTi=kwfRgR=HhCRkU0H69agqZOFQkWmLob-36JuT1@mail.gmail.com> <4C88530F.7030709@elischer.org> <20100909162334.N92609@sola.nimnet.asn.au>
next in thread | previous in thread | raw e-mail | index | archive | help
On 9/8/10 11:26 PM, Ian Smith wrote: > On Wed, 8 Sep 2010, Julian Elischer wrote: > > On 9/8/10 4:44 PM, Tony wrote: > > > my setup looks like this > > > > > > PC1 -> browser -> firewall(redirects port 80 to 8888) -> dansguardian( > > > 127.0.0.1:8888) -> squid(127.0.0.1:3333) -> internet > > > > > > keep in mind that everything you see above are all on the same PC1 > > > > > > > you may need to use divert and natd to achieve the effect you require. > > Is this a case where in-kernel NAT wouldn't work as well? > > Or haven't apple incorporated that into their ipfw? I have doubts as to whether either ipfw forward OR in-kernel nat are in their version of the stack. (I have no proof but....) > > cheers, Ian
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4C88FAB4.4060401>