Date: Mon, 10 Jun 2002 22:39:24 -0500 (CDT) From: Nick Rogness <nick@rogness.net> To: Alexey Privalov <lucky@land3.nsu.ru> Cc: freebsd-ipfw@FreeBSD.ORG Subject: Re: natd & trans proxy Message-ID: <Pine.BSF.4.21.0206102233430.38288-100000@cody.jharris.com> In-Reply-To: <20020610101352.Y47747-100000@land3.nsu.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 10 Jun 2002, Alexey Privalov wrote: > hi all. > > i`m running two natd`s on rl3 (external) and rl0 (internal). > > the first natd is running on 8668 (standart) port and is diverting > private ip to ip on interface and have following configuration: > interface rl3 > unregistered_only yes > use_sockets yes > same_ports yes > OK. > > > the second natd have a following configuration: > port 8669 > proxy_only > proxy_rule port 80 server proxy_addr:8888 > interface rl0 > > and is forwarding to squid. > > why when interface rl0 receive http packet then it divert ip to external. > You should not be using natd to do the forwarding to your proxy server, since you don't want to change header info in the packet. You only want to forward it to your proxy server so use ipfw fwd instead...that will resolve all of your issues. There are several examples online and within the mailing list archives that describe how to do this properly. PS. Please don't cross-post to multiple lists. Besides, this question belongs on freebsd-questions anyway. Nick Rogness <nick@rogness.net> - Don't mind me...I'm just sniffing your packets To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0206102233430.38288-100000>