Date: Wed, 11 Feb 2004 08:19:42 -0600 From: Nathan Kinkade <nkinkade@ub.edu.bz> To: Markus Kovero <markus.kovero@grafikansi.fi> Cc: freebsd-questions@freebsd.org Subject: Re: ipnat transparent www proxy question Message-ID: <20040211141942.GA6762@nkinkade> In-Reply-To: <200402110921.i1B9LaY18818@nalle.netsonic.fi> References: <200402110921.i1B9LaY18818@nalle.netsonic.fi>
next in thread | previous in thread | raw e-mail | index | archive | help
--EVF5PPMfhYS0aIcm Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Feb 11, 2004 at 11:21:36AM +0200, Markus Kovero wrote: > I would like to do transparent www proxy for nat-network which is > 172.16.0.0/24 and wwwproxy being $ispcache > I told ipnat to do: > rdr xl0 from 172.16.0.0/24 to any port =3D 80 -> $ispcache port 8080 tcp >=20 > but all www connections go straight through, not through cache. > xl0 is LAN interface. >=20 > Any clue? >=20 > Markus Kovero What is the output of `ipfw list`? You should probably add a rule something like the following just after your NAT divert rule: $ ipfw add fwd $ispcache,8080 tcp from any to any dst-port 80 in Nathan --=20 gpg --keyserver pgp.mit.edu --recv-keys D8527E49 --EVF5PPMfhYS0aIcm Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQFAKjn+O0ZIEthSfkkRAnEXAJ9iaiqNHvzsZnPKFuWYodSFd1TMaACg1Mzh qL0EeuALhwdDZeJeXJ83zMY= =yjtg -----END PGP SIGNATURE----- --EVF5PPMfhYS0aIcm--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040211141942.GA6762>