Date: Mon, 16 Jun 2003 10:19:15 +1000 From: Andrew Thomson <ajthomson@optushome.com.au> To: freebsd-questions@freebsd.org Subject: Re: ipfirewall_forward Message-ID: <20030616001915.GF60583@athomson.prv.au.itouchnet.net> In-Reply-To: <20030616000934.GE60583@athomson.prv.au.itouchnet.net> References: <20030616000934.GE60583@athomson.prv.au.itouchnet.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Jun 16, 2003 at 10:09:34AM +1000, Andrew Thomson wrote: > i'm working on setting up a transparent squid proxy. > > would like to clarify what the forward stuff actually does.. > > this is what I thought was happening.. > > ipfw2 initialized, divert enabled, rule-based forwarding enabled, > default to accept, logging unlimited > > 00500 fwd 192.168.1.2 tcp from any to any dst-port 80 > 65535 allow ip from any to any > > i just thought i'd muck around with apache atm.. i hit the box with these > rules on it on port 80, and the request is never fwd'ed to 192.168.1.2 > > is this what's supposed to happen?? > > a tcpdump port 80 on both hosts show in the incoming http from the > client, however nothing on the machined having the packets forwarded.. > > can someone clarify this for me? > > thanks, > > ajt. > just tested some more.. and i assume this fwd business is for just pushing packets around on the same host.. i snuck in rule 400 as a test.. 00400 fwd 192.168.1.1,3128 tcp from any to any dst-port 80 00500 fwd 192.168.1.2 tcp from any to any dst-port 80 1.1 is what i'm typing in my browser.. originally i was hoping this would be forwarded to 1.2.. but was getting no love.. however when i fwd to the same host as i type in the browser, the fwd works.. i take it this is it's use?? so how do I do want I want to do?? thanks, ajt.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030616001915.GF60583>