From owner-freebsd-ipfw Mon Mar 4 13:13:46 2002 Delivered-To: freebsd-ipfw@freebsd.org Received: from smtpout.mac.com (smtpout.mac.com [204.179.120.86]) by hub.freebsd.org (Postfix) with ESMTP id BD94537B416 for ; Mon, 4 Mar 2002 13:13:24 -0800 (PST) Received: from smtp-relay01.mac.com (server-source-si02 [10.13.10.6]) by smtpout.mac.com (8.12.1/8.10.2/1.0) with ESMTP id g24LDOJZ007552 for ; Mon, 4 Mar 2002 13:13:24 -0800 (PST) Received: from asmtp02.mac.com ([10.13.10.66]) by smtp-relay01.mac.com (Netscape Messaging Server 4.15 relay01 Jun 21 2001 23:53:48) with ESMTP id GSGWAB00.SE6 for ; Mon, 4 Mar 2002 13:13:23 -0800 Received: from osx.jdk ([24.83.206.181]) by asmtp02.mac.com (Netscape Messaging Server 4.15 asmtp02 Jun 21 2001 23:53:48) with ESMTP id GSGWAB00.N9W for ; Mon, 4 Mar 2002 13:13:23 -0800 Date: Mon, 4 Mar 2002 13:13:22 -0800 Subject: Transparent proxy for connections originating on localhost Content-Type: text/plain; charset=US-ASCII; format=flowed Mime-Version: 1.0 (Apple Message framework v481) From: Jeff Koftinoff To: freebsd-ipfw@FreeBSD.ORG Content-Transfer-Encoding: 7bit In-Reply-To: <44895D20-2F88-11D6-BBFC-003065709198@jdkoftinoff.com> Message-Id: X-Mailer: Apple Mail (2.481) Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG I'm sorry if this is a dumb question (or a duplicate msg), but I am having a weird problem with ipfw. I am using mac-osx, but I know that all the cool ipfw gurus are probably here on freebsd-ipfw. I am able to get a transparent proxy working for other computers on my lan with the line: My computer's ip is 192.168.147.12 I am running apache on 192.168.147.12:80 and another server on 127.0.0.1:9999 /sbin/ipfw add 1010 fwd 127.0.0.1,9999 tcp from 192.168.147.0/24 to any 80 When 192.168.147.2 tries to connect to 192.168.147.12:80, the connection properly gets redirected to 127.0.0.1:9999. Works fine. But when 192.168.147.12 tries to connect to 192.168.147.12:80, the connection hangs and does not get redirected to 127.0.0.1:9999 - the server at 127.0.0.1:9999 does not even see the incoming connection. However the packets must be matching the fw rule because with this fw rule in place 192.168.147.12 is unable to get to the apache server on port 80. Is there some trick to this or am I doing something stupid? All I want is for all web accesses done by programs on the local machine to be redirected to the transparent proxy on the local machine. Only one machine would be involved. Or should I be looking into 'divert' sockets? Where would I learn more about those? Thanks in advance Jeff Koftinoff jeffkoftinoff@mac.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message