From owner-freebsd-stable@FreeBSD.ORG Wed Apr 18 01:31:58 2007 Return-Path: X-Original-To: freebsd-stable@freebsd.org Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id E8F9F16A47A for ; Wed, 18 Apr 2007 01:31:58 +0000 (UTC) (envelope-from zen@tk-pttuntex.com) Received: from matrix.tk-pttuntex.com (matrix.tk-pttuntex.com [203.77.209.162]) by mx1.freebsd.org (Postfix) with ESMTP id B3E1B13C45E for ; Wed, 18 Apr 2007 01:31:57 +0000 (UTC) (envelope-from zen@tk-pttuntex.com) Received: from [172.64.14.3] (core.bps.co.id [202.57.0.93]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) (Authenticated sender: zen) by matrix.tk-pttuntex.com (Postfix) with ESMTP id 6F83A40B7F7; Wed, 18 Apr 2007 08:31:55 +0700 (WIT) Message-ID: <462575D4.2010801@tk-pttuntex.com> Date: Wed, 18 Apr 2007 08:35:16 +0700 From: zen User-Agent: Mozilla Thunderbird 1.0.6 (Windows/20050716) X-Accept-Language: en-us, en MIME-Version: 1.0 To: jonathan michaels References: <46247471.9030503@tk-pttuntex.com> <200704172129.22275.sanya-spb@list.ru> <20070418095903.12432@caamora.com.au> In-Reply-To: <20070418095903.12432@caamora.com.au> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit Cc: freebsd-stable@freebsd.org Subject: Re: tproxy on freebsd X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 18 Apr 2007 01:31:59 -0000 jonathan michaels wrote: >alexander, > >list, sorry for posting to list, i tried to post to advertised mail >address and my post bounced as "user unknown". so i try here. > >On Tue, Apr 17, 2007 at 09:29:21PM +0400, Alexander Kuprijanov wrote: > > >>В сообщении от Tuesday 17 April 2007 11:17:05 zen написал(а): >> >> > > > >>I use transparent proxy on my home wi-fi network, and on work (ethernet lan) >>with pf+proxy on FreeBSD gateways without any problems... earlier I used >>ipfilter+proxy (for transparent proxing) also without problems. >> >>I can share my config (pf+proxy) if you need >> >> > >i don't have a problem with this but i am going to be setting up a >similar setup and would appreciate the help a working setup would >provide. > >sorry for my poor english and typing .. i am disabled. > >kind regards > >jonathan > > > any help will be appreciated, i could use a sample configuration file regarding this problem. FYI i already running transparent proxy with ipf+ipnat,: rdr nve0 0.0.0.0/0 port 80 -> 122.x.x.x port 3128 tcp but with that configuration, still the proxy ip address that visible when my client using the proxy. is it me or just i cant achieve that with FreeBSD? because i hate to switch to other OS only because of this. anyway this what i found in the net, but only work on linux http://www.sanog.org/resources/sanog4-devdas-transproxy.pdf TIA Zen