Date: Sun, 27 Oct 2002 04:19:43 -0500 From: Michael Joyner <mjoyner2@hq.dyns.cx> To: Derrick Joseph <deejay98@digitelone.com> Cc: questions@freebsd.org Subject: Re: transparent proxy support Message-ID: <1035710383.3dbbafaf2e0f3@imp.hq.dyns.cx> In-Reply-To: <web-25385122@digitelone.com> References: <web-25385122@digitelone.com>
next in thread | previous in thread | raw e-mail | index | archive | help
my point was simple. Sorry you mistook it. I am using a STOCK squid install from the ports tree. I am *not* using ipf headers. Quoting Derrick Joseph <deejay98@digitelone.com>: > > I'm sorry man but I dont need your explanation regarding > the configuration of the squid box, ipfw, router, etc. As > I have told you, I was able to run a transparent proxy > server from FreeBSD 4.6.2 without any problem. I > customized the kernel, configured squid and my router and > it worked fine for me and my subscribers. My primary > concern here is that I did the same thing into this > FreeBSD 4.7 and when I tried compiling the squid with the > following options > > (a) --enable-ipf-transparent -- it tells me that ipfilter > header files not found > > I've also tried, > (b) --enable-pf-transparent -- it tells me that pf header > files not found > > Now, why the heck is this new release tell me that the > header files are not found. And this is my primary concern > here ... > > Deejay > > On Sat, 26 Oct 2002 13:59:24 -0400 > mjoyner2@hq.dyns.cx wrote: > >if you are serving web pages off of your natd/ipfw/squid > >box, the following > >helps to... (to prevent people trying to view your site > >from getting squid > >denied errors) > > > >modify my previous rule 62 to read > > > >00062 4792 259184 fwd 127.0.0.1,3128 tcp from > >any to any 80 via ed0 > > > >where (in my case) ed0 is your INTERNAL nic, not your > >public nic > > > >00060 20198 1074897 allow tcp from me to any 80 > >00061 11339 15005323 allow tcp from any 80 to me > >00062 4792 259184 fwd 127.0.0.1,3128 tcp from > >any to any 80 via ed0 > > > > > > > >Quoting Derrick Joseph <deejay98@digitelone.com>: > > > >> > >> Oh yes, I was also able to do it before as stated in my > >> previous email. The problem right now in the current > >> release is that the ipfilter header files are missing. > >> > >> On Sat, 26 Oct 2002 00:01:57 -0400 > >> mjoyner2@hq.dyns.cx wrote: > >> >what I was saying, is that I didn't > >> >do any special build of squid at the time. > >> > > >> >unfortunately, this was before 4.7. > >> > > >> >Quoting Derrick Joseph <deejay98@digitelone.com>: > >> > > >> >> > >> >> So you're using 4.7 ??? > >> >> > >> >> On Fri, 25 Oct 2002 23:44:57 -0400 > >> >> mjoyner2@hq.dyns.cx wrote: > >> >> >When I was running a transparent proxy for a college > >>I > >> >> >used to work for, I just installed the standard > >>squid > >> >> >from the ports collection and just adjusted my > >>kernel > >> >> >to do the tranparent forwarding via ipfw and it seem > >> >> >to work just fine. > >> >> > > >> >> >Quoting Derrick Joseph <deejay98@digitelone.com>: > >> >> > > >> >> >> > >> >> >> > >> >> >> Hello People !!! > >> >> >> > >> >> >> I just upgraded my system from FreeBSD 4.6.2 to > >> >>FreeBSD > >> >> >> 4.7-RELEASE and now I'm having problem configuring > >>a > >> >> >> transparent proxy server support. With my FreeBSD > >> >>4.6.2 > >> >> >> before, I haven't encountered a single problem > >>when I > >> >> >> compiled squid to support transparent proxy with > >> >> >> "--enable-ipf-transparent" option. Thus, after > >> >> >>installing > >> >> >> the box and enabling the IPFIREWALL option in the > >> >> >>kernel, > >> >> >> I started installing squid with the same options I > >> >>did > >> >> >> with my FreeBSD 4.6.2 box. At the installation > >> >>process > >> >> >>it > >> >> >> stops it tells me that "IPFILTER header files not > >> >>found" > >> >> >> so I went through squid's configure script and > >>found > >> >>out > >> >> >> that it should be "--enable-pf-transparent" if I > >>want > >> >>to > >> >> >> use IPFW as my platform. This time it tells me "PF > >> >> >>header > >> >> >> files not found" ... what seems to be the problem > >>in > >> >> >>here > >> >> >> ? > >> >> >> > >> >> >> Please help I'm using this box for production > >> >>purposes. > >> >> >> > >> >> >> Thanks. > >> >> >> > >> >> >> Deejay > >> >> >> > >> >>____________________________________________________________________ > >> >> >> ** Get your free E-Mail account at > >>WWW.DIGITELONE.COM > >> >>** > >> >> >> > >> >> >> To Unsubscribe: send mail to majordomo@FreeBSD.org > >> >> >> with "unsubscribe freebsd-questions" in the body > >>of > >> >>the > >> >> >>message > >> >> >> > >> >> > > >> >> > > >> >> > > >> >> > > >> >> >------------------------------------------------- > >> >> >This mail sent through IMP: http://horde.org/imp/ > >> >> > >> >> > >>____________________________________________________________________ > >> >> ** Get your free E-Mail account at WWW.DIGITELONE.COM > >>** > >> >> > >> > > >> > > >> > > >> > > >> >------------------------------------------------- > >> >This mail sent through IMP: http://horde.org/imp/ > >> > >> ____________________________________________________________________ > >> ** Get your free E-Mail account at WWW.DIGITELONE.COM ** > >> > > > > > > > > > >------------------------------------------------- > >This mail sent through IMP: http://horde.org/imp/ > > ____________________________________________________________________ > ** Get your free E-Mail account at WWW.DIGITELONE.COM ** > -- FreeBSD System Administrator http://manhattan.hq.dyns.cx/ ------------------------------------------------- This mail sent through IMP: http://horde.org/imp/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1035710383.3dbbafaf2e0f3>