From owner-freebsd-questions@FreeBSD.ORG Thu May 31 19:02:05 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id A749316A421 for ; Thu, 31 May 2007 19:02:05 +0000 (UTC) (envelope-from teklimbu@wlink.com.np) Received: from smtp5.wlink.com.np (smtp5.wlink.com.np [202.79.32.52]) by mx1.freebsd.org (Postfix) with SMTP id B9E8113C448 for ; Thu, 31 May 2007 19:02:03 +0000 (UTC) (envelope-from teklimbu@wlink.com.np) Received: (qmail 39851 invoked from network); 31 May 2007 18:35:19 -0000 Received: from unknown (HELO smtp8.wlink.com.np) (202.79.32.38) by 0 with SMTP; 31 May 2007 18:35:19 -0000 Received: (qmail 20799 invoked by uid 98); 31 May 2007 18:35:19 -0000 Received: from 202.79.32.77 by smtp8.wlink.com.np (envelope-from , uid 1004) with qmail-scanner-1.25 (clamdscan: 0.88.7/3335. Clear:RC:1(202.79.32.77):. Processed in 0.114637 secs); 31 May 2007 18:35:19 -0000 X-Qmail-Scanner-Mail-From: teklimbu@wlink.com.np via smtp8.wlink.com.np X-Qmail-Scanner: 1.25 (Clear:RC:1(202.79.32.77):. Processed in 0.114637 secs) Received: from smtp2.wlink.com.np (202.79.32.77) by smtp8.wlink.com.np with SMTP; 31 May 2007 18:35:18 -0000 Received: (qmail 9009 invoked by uid 516); 31 May 2007 18:35:18 -0000 Received: from [202.79.38.83] (HELO [202.79.38.83]) by smtp2.wlink.com.np (qmail-smtpd) with SMTP; 31 May 2007 18:35:17 -0000 (Fri, 01 Jun 2007 00:20:17 +0545) Message-ID: <465F157B.1090205@wlink.com.np> Date: Fri, 01 Jun 2007 00:20:39 +0545 From: Tek Bahadur Limbu User-Agent: Thunderbird 1.5.0.12 (Windows/20070509) MIME-Version: 1.0 To: Spiros Papadopoulos References: In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Check-By: smtp2.wlink.com.np Spam: No ; 0.3 / 7.0 X-Spam-Status-WL: No, hits=0.3 required=7.0 Cc: freebsd mailing list Subject: Re: Squid and IPFW X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 31 May 2007 19:02:05 -0000 Spiros Papadopoulos wrote: > Dear all, > > I would like to setup a gw / firewall (IPFW) which will also run Squid, in > order to restrict access to certain websites > or to allow certain workstations to have full access to the internet. > How can I redirect all traffic going to port 80 on the gw, to port 3128 on > Squid without setting this on each workstation? > I know this can be done with iptables but i don't want to use iptables on > this one... Hi Spiros, You can try the following commands: /sbin/ipfw add fwd 127.0.0.1,3128 tcp from any to any 80 in /sbin/ipfw add allow tcp from 192.168.0.0/24 to any 3128 in via fxp0 Hope it helps. > > Thanks in advance > Spiros P. > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > > >