From owner-freebsd-security Mon Nov 27 8:22:25 2000 Delivered-To: freebsd-security@freebsd.org Received: from homer.softweyr.com (bsdconspiracy.net [208.187.122.220]) by hub.freebsd.org (Postfix) with ESMTP id E5F5137B479 for ; Mon, 27 Nov 2000 08:22:15 -0800 (PST) Received: from [127.0.0.1] (helo=softweyr.com ident=Fools trust ident!) by homer.softweyr.com with esmtp (Exim 3.16 #1) id 13zuVa-0000CI-00; Sat, 25 Nov 2000 22:37:50 -0700 Message-ID: <3A20A1AD.2CB9861C@softweyr.com> Date: Sat, 25 Nov 2000 22:37:49 -0700 From: Wes Peters Organization: Softweyr LLC X-Mailer: Mozilla 4.75 [en] (X11; U; Linux 2.2.12 i386) X-Accept-Language: en MIME-Version: 1.0 To: =?iso-8859-1?Q?P=E4r?= Thoren Cc: freebsd-security@freebsd.org Subject: Re: secure tunnel References: Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Pär Thoren wrote: > > Can I forward port 80 on a natd server so that every connection that is > made by local machines (nat clients) to port 80 on the natdserver(on the > internal interface) will go to another server? Can this be done with ssh > tunneling so that the connection between the natdserver and the other www > server will be secure? ipfilter and ipnat can do this. See the transproxy port for an example of a transparent www proxy using ipnat. I'm not sure how close this might be to your problem, but it's a start. -- "Where am I, and what am I doing in this handbasket?" Wes Peters Softweyr LLC wes@softweyr.com http://softweyr.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message