From owner-freebsd-hackers  Thu Oct 11 14:17:29 2001
Delivered-To: freebsd-hackers@freebsd.org
Received: from host4.rpi.wulimasters.net (host4.rpi.wulimasters.net [128.113.36.114])
	by hub.freebsd.org (Postfix) with ESMTP id EB40137B405
	for <freebsd-hackers@freebsd.org>; Thu, 11 Oct 2001 14:17:25 -0700 (PDT)
Received: (qmail 99017 invoked by uid 89); 11 Oct 2001 21:17:32 -0000
Message-ID: <20011011211732.99016.qmail@host4.rpi.wulimasters.net>
From: "Alex Newman" <dolemite@wulimasters.net>
To: freebsd-hackers@freebsd.org
Subject: NATD+SSL maybe should be a new subject
Date: Thu, 11 Oct 2001 21:17:32 GMT
Mime-Version: 1.0
Content-Type: text/plain; format=flowed; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-hackers.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-hackers>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-hackers>
X-Loop: FreeBSD.ORG

After discussing it more i was wondering what the plausibility of instead of 
implementing NATD+SSL of implementing that works like the natd does with 
divert. Example:
1) ipfw could send to 8669/divert which has ssld listening
2) ssld could act very much the same way natd would only all it would do is 
negotiate the ssl connection and then decrypt and encrypt as need be.
3) pass to natd on 8868/divert or pass back to ipfw 

Any ideas? 

Alex Newman
www.wulimasters.net 

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message