From owner-freebsd-net  Sun May 17 23:58:20 1998
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id XAA20492
          for freebsd-net-outgoing; Sun, 17 May 1998 23:58:20 -0700 (PDT)
          (envelope-from owner-freebsd-net@FreeBSD.ORG)
Received: from osku.suutari.iki.fi (kn6-045.ktvlpr.inet.fi [194.197.169.45])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id XAA20484
          for <freebsd-net@FreeBSD.ORG>; Sun, 17 May 1998 23:58:13 -0700 (PDT)
          (envelope-from ari@suutari.iki.fi)
Received: from suutari.iki.fi (mocha.intranet.syncrontech.com [192.168.2.3])
	by osku.suutari.iki.fi (8.8.7/8.8.5) with ESMTP id JAA02237;
	Mon, 18 May 1998 09:57:59 +0300 (EET DST)
Message-ID: <355FDE2F.FC5DABB6@suutari.iki.fi>
Date: Mon, 18 May 1998 10:07:27 +0300
From: Ari Suutari <ari@suutari.iki.fi>
X-Mailer: Mozilla 4.05 [en] (WinNT; I)
MIME-Version: 1.0
To: alk@pobox.com
CC: freebsd-net@FreeBSD.ORG
Subject: Re: Transparent proxying (was: IPFW + natd -redirect_port)
References: <Pine.BSF.3.95.980515004045.12303B-100000@current1.whistle.com>
		<355C4626.5B8EAF27@suutari.iki.fi> <199805151854.NAA14225@compound.east.sun.com>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Hi,

Tony Kimball wrote:
> 
> I have a problem which I imagine to be fairly common, and this talk of
> transparent proxies suggests that the best solution is to be found
> by querying this list:
> 
> I use various IP providers.  Depending on the nonce provider, my smtp
> relay host varies, and my http/ftp proxy varies or becomes null.
> Currently I use a ppp linkup/linkdown pair to switch /etc/sendmail.cf,
> (but this means that I can't run sendmail as a daemon, which is a
> problem for other hosts on my lan, for which I route) and turn proxies
> on/off manually.  Ideally, I think I should like to transparently
> proxy http/ftp for both the router and other LAN clients, or disable
> proxying entirely, depending on the route, and similarly to translate
> some dummy IP to the current relay host depending upon the route.
> 
> What is the best current and the best near-future solution?

	I don't know about best but one near-future solution 
	could be natd with transparent proxying support. If you are
	running -current then I guess that you could use ipfilter
	to do this also. Anyway, you will still need ppp linkup/linkdown
	pair to manage either configuration of natd or ipfilter.


		Ari S.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message