Date: Mon, 20 May 1996 00:10:59 +0930 (CST) From: Michael Smith <msmith@atrad.adelaide.edu.au> To: ejs@bfd.com (Eric J. Schwertfeger) Cc: terry@lambert.org, archie@whistle.com, dwhite@riley-net170-164.uoregon.edu, clintm@ICSI.Net, FreeBSD-Questions@freebsd.org Subject: Re: ip masquerading Message-ID: <199605191441.AAA19059@genesis.atrad.adelaide.edu.au> In-Reply-To: <Pine.BSF.3.91.960518105811.17730A-100000@harlie.bfd.com> from "Eric J. Schwertfeger" at May 18, 96 11:07:09 am
next in thread | previous in thread | raw e-mail | index | archive | help
Eric J. Schwertfeger stands accused of saying: > And as I've said before, Sorry, I don't have the source to Win95, so I > can't do that. I agree that masquerading isn't a fix-all, or even the > prefered method of handling this, but until Socks5 is to the point that > it can "socksify" programs that I don't have source for, without > interferring with regular operations, and do this under OS/2, Windows > 3.X, NT, and Win95, then my choice is to run linux on our firewall and > use masquerading, or to spend a few weeks of time that I haven't got > figuring out how to proxy a bunch of non-standard services for apps that > I haven't got source for. Netscape supports SOCKS on all platforms. For OS/2, WebEx, Kermit (I believe telnet, but nobody in their right mind uses it) and Gopher grok SOCKS at least. I think this covers about 99% of your firewalled-client requirements. Allowing firewalled systems access to the outer network is Bad Practise. If you're adamant about packet rewriting (fool), then I believe that ipfilt (Darren Reed?) offers this functionality in it's NPT module. Hit the lists archive if you're really desperate, or get with the Program. -- ]] Mike Smith, Software Engineer msmith@atrad.adelaide.edu.au [[ ]] Genesis Software genesis@atrad.adelaide.edu.au [[ ]] High-speed data acquisition and (GSM mobile) 0411-222-496 [[ ]] realtime instrument control (ph/fax) +61-8-267-3039 [[ ]] Collector of old Unix hardware. "Where are your PEZ?" The Tick [[
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199605191441.AAA19059>