Date: Thu, 14 Jan 1999 08:51:57 +0000 From: Brian Somers <brian@Awfulhak.org> To: Eivind Eklund <eivind@FreeBSD.ORG> Cc: "Joseph T. Lee" <nugundam@la.best.com>, hackers@FreeBSD.ORG, Charles Mott <cmott@srv.net>, Ari Suutari <ari@suutari.iki.fi> Subject: Re: libalias and ident (& API changes) Message-ID: <199901140851.IAA44236@keep.lan.Awfulhak.org> In-Reply-To: Your message of "Thu, 14 Jan 1999 04:29:51 %2B0100." <19990114042951.I76923@bitbox.follo.net>
next in thread | previous in thread | raw e-mail | index | archive | help
[Charles & Ari cc'd]
[discussion about supporting ident queries back through libalias]
> On Wed, Jan 13, 1999 at 02:22:45PM -0800, Joseph T. Lee wrote:
> > Any better ways to hack around this crux would be most welcome.
>
> I think the only way to do this is
>
> (1) 'Take over' port 113, faking an endpoint for all connections to
> it.
> (2) When the actual request comes in, parse it to find out which
> alias_link it belongs to. If it doesn't belong to any, synthezise a
> 'not found' response and be done. Otherwise, start creating a
> TCP-connection to true target, where you'll be repeating the request
> (with appropriate sequence number skew etc).
> (3) Create an alias_link for the ingoing connection.
>
> Of course, all of this requires that you are able to synthesise new
> packets, not just modify or drop packets. The present libalias API is
> not up to it; the API must be re-done, and all the clients updated.
>
> While we're at it, I think the library should be renamed to libnat.
> The code should also be made to not use these enormous amounts of
> global data, but instead work on data structures passed in by the
> client - this allow several instances in a single unit, and makes it
> much more suitable for more serious use.
I agree with the data localisation and don't really care one way or
the other about the naming. However, Charles Mott (the libalias
author - cc'd) had something to say about this last time it was
discussed IIRC.
> Eivind.
--
Brian <brian@Awfulhak.org> <brian@FreeBSD.org> <brian@OpenBSD.org>
<http://www.Awfulhak.org>;
Don't _EVER_ lose your sense of humour !
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199901140851.IAA44236>