Date: Mon, 19 Nov 2007 10:10:43 -0500 From: Steve Bertrand <iaccounts@ibctech.ca> To: infofarmer@FreeBSD.org Cc: freebsd-questions@freebsd.org Subject: Re: FreeBSD router and WCCP Message-ID: <4741A773.8010101@ibctech.ca> In-Reply-To: <20071119145205.GE57722@amilo.cenkes.org> References: <473DD804.1020502@ibctech.ca> <20071118151716.GA57722@amilo.cenkes.org> <4741968A.3010009@ibctech.ca> <20071119145205.GE57722@amilo.cenkes.org>
next in thread | previous in thread | raw e-mail | index | archive | help
> ipfw forwarding is a very easy way to redirect traffic without > changing it. PF has similar functionality. It all depends on what > the appliance supports. If wccp is the only way it can eat > packets, try playing with gre(4). But maybe it'll consume just > plain packets with "wrong" IP destinations arriving on its MAC > address, just the way squid on FreeBSD does. > > BTW, if the appliance supports ICAP, you'll be much better off > running squid on a FreeBSD box and filtering content through > ICAP. The appliance does indeed have ICAP capabilities, but I have never dabbled with it before. I am familiar with IPFW, but I'd like to know all options in order to choose the best one. I would very much prefer to do this in a way without having to have Squid running on the box, but will if I have to. >> The filter will not be inline, and it will be an opt-in type service, so >> only certain traffic will need to be redirected. > > You'll be able to use ipfw or pf to tune the policies to a very > fine degree. Thanks for your help! Steve
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4741A773.8010101>