From owner-freebsd-security  Mon Nov 27 16:16:43 2000
Delivered-To: freebsd-security@freebsd.org
Received: from obelix.rby.hk-r.se (obelix.rby.hk-r.se [194.47.134.4])
	by hub.freebsd.org (Postfix) with ESMTP id 71FC637B479
	for <freebsd-security@freebsd.org>; Mon, 27 Nov 2000 16:16:39 -0800 (PST)
Received: from orc.rby.hk-r.se (orc [194.47.134.179])
	by obelix.rby.hk-r.se (8.10.2/8.10.2) with ESMTP id eAS0GZK19089;
	Tue, 28 Nov 2000 01:16:36 +0100 (MET)
Received: from localhost (t98pth@localhost)
	by orc.rby.hk-r.se (8.10.2/8.10.2) with ESMTP id eAS0GYb17762;
	Tue, 28 Nov 2000 01:16:34 +0100 (MET)
Date: Tue, 28 Nov 2000 01:16:34 +0100 (MET)
From: =?ISO-8859-1?Q?P=E4r_Thoren?= <t98pth@student.hk-r.se>
To: Wes Peters <wes@softweyr.com>
Cc: =?iso-8859-1?Q?P=E4r?= Thoren <t98pth@student.hk-r.se>,
	freebsd-security@freebsd.org
Subject: Re: secure tunnel
In-Reply-To: <3A20A1AD.2CB9861C@softweyr.com>
Message-ID: <Pine.GSO.4.21.0011280112260.17753-100000@orc.rby.hk-r.se>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=ISO-8859-1
Content-Transfer-Encoding: QUOTED-PRINTABLE
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org


I solved it like this:

bounce -p 601 localhost 800
ssh -L800:localhost:80 www.otherserver.com

natclient does:

http://192.168.1.1:601


and gets a secure connection to www.otherserver.com


any comments?

/P=E4r


On Sat, 25 Nov 2000, Wes Peters wrote:

> P=E4r Thoren wrote:
> >=20
> > Can I forward port 80 on a natd server so that every connection that is
> > made by local machines (nat clients) to port 80 on the natdserver(on th=
e
> > internal interface) will go to another server? Can this be done with ss=
h
> > tunneling so that the connection between the natdserver and the other w=
ww
> > server will be secure?
>=20
> ipfilter and ipnat can do this.  See the transproxy port for an example
> of a transparent www proxy using ipnat.  I'm not sure how close this migh=
t
> be to your problem, but it's a start.
>=20
> --=20
>             "Where am I, and what am I doing in this handbasket?"
>=20
> Wes Peters                                                         Softwe=
yr LLC
> wes@softweyr.com                                           http://softwey=
r.com/
>=20
>=20
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-security" in the body of the message
>=20



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message