Date: Mon, 21 Dec 1998 11:33:37 +0200 (EET) From: pam@polynet.lviv.ua To: Julian Elischer <julian@whistle.com> Cc: Steve Ames <steve@ns1.cioe.com>, freebsd-isp@FreeBSD.ORG Subject: Re: Transparent Proxy: FBSD 3.0, Squid and NAT Message-ID: <Pine.BSF.4.02.9812211129410.11706-100000@NetSurfer.lp.lviv.ua> In-Reply-To: <Pine.BSF.3.95.981217114615.2175B-100000@current1.whistle.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 17 Dec 1998, Julian Elischer wrote: > If you are using FreeBSD 3.0 then why not use the kernel's built-in > transproxy support? Can somebody post sample code for using that kernel-level transparent proxy support? It seems to lack documentation on this feature :-( Do I have just to invoke getsockname() to get real destination IP/port or what? Thanks in advance. > what machine is the proxy server running on? If on the gateway machine, > then all you need is the firewall rule: > > ipfw add 2 fwd 127.0.0.1,3128 tcp from any to 0.0.0.0/0 80 in recv ed1 out > xmit ed0 > > where ed0 is your internet interface, and ed1 is your internal interface > 3128 is the squid listenning port. > > your kernel needs option IPFIREWALL_FORWARD Adrian Pavlykevych email: <pam@polynet.lviv.ua> System Administrator phone/fax: +380 (322) 742041 State University "Lvivska Polytechnica" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.02.9812211129410.11706-100000>