From owner-freebsd-questions Tue Apr 25 10:37:31 2000 Delivered-To: freebsd-questions@freebsd.org Received: from athena.tyfon.net (athena.tyfon.net [212.37.11.70]) by hub.freebsd.org (Postfix) with ESMTP id CEF4B37B79B for ; Tue, 25 Apr 2000 10:37:26 -0700 (PDT) (envelope-from dl@tyfon.net) Received: from tyfon.net (dev.null.tyfon.com [213.212.29.17]) by athena.tyfon.net (8.10.1/8.10.1/Tyfon) with ESMTP id e3PHbM031945 for ; Tue, 25 Apr 2000 19:37:23 +0200 (CEST) Received: from enigmatic by tyfon.net with SMTP (MDaemon.v2.84.R) for ; Tue, 25 Apr 2000 19:46:17 +0200 From: "Dan Larsson" To: "[FreeBSD-Questions-List] (E-mail)" , "[Squid-Users-List] (E-mail)" Subject: www and squid on same machine Date: Tue, 25 Apr 2000 19:33:17 +0200 Message-ID: <000101bfaedc$57f315d0$1401a8c0@intranet.tyfon.net> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Importance: Normal X-MDaemon-Deliver-To: freebsd-questions@freebsd.org X-Return-Path: dl@tyfon.net Reply-To: dl@tyfon.net Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I'm currently running a transparent cache on a FreeBSD machine. The machine is connected via two network interface cards one to the internet and one to the local lan. squid is bound to 127.0.0.1 and listens on port 8080 apache is bound to 127.0.0.1 and listens on port 81 These are the firewall rules I use to hijack http: ifpw add 100 pass tcp from INTERNET_IP_ADDRESS to any ipfw add 110 fwd 127.0.0.1,8080 tcp from any to any 80 What do I need to do to serve http on the outside interface without allowing everyone access to the squid cache? ( I've tried to use nat and ipforwarding without success ) Regards ------------ Dan Larsson To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message