From owner-freebsd-stable@FreeBSD.ORG Thu Sep 18 20:48:45 2003 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BDFB416A4B3 for ; Thu, 18 Sep 2003 20:48:45 -0700 (PDT) Received: from sage.ts.co.nz (sage.tasman.net [202.49.92.1]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3479A43F3F for ; Thu, 18 Sep 2003 20:48:44 -0700 (PDT) (envelope-from marcos@thepacific.net) Received: (from root@localhost) by sage.ts.co.nz (8.12.10/8.11.3) id h8J44X2h026898; Fri, 19 Sep 2003 16:04:33 +1200 Received: from thepacific.net ([202.49.92.224]) by sage.ts.co.nz (8.11.6/8.11.3) with ESMTP id h8J44Bb26457; Fri, 19 Sep 2003 16:04:12 +1200 Message-ID: <3F6A7C8E.7080205@thepacific.net> Date: Fri, 19 Sep 2003 15:48:30 +1200 From: Marcos Biscaysaqu Organization: ThePacific.net User-Agent: Mozilla/5.0 (X11; U; Linux i386; en-US; rv:1.4) Gecko/20030624 Netscape/7.1 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Bob Hall , freebsd-stable@freebsd.org References: <3F669753.4040205@thepacific.net> <20030916064224.GA90448@e-Gitt.NET> <20030916065615.GB5711@kongemord.krig.net> <3F6775D0.1030501@thepacific.net> <20030916222806.GA8681@kongemord.krig.net> <20030917004141.GC8911@kongemord.krig.net> <3F68D526.8080909@thepacific.net> <20030918010728.GB14063@kongemord.krig.net> In-Reply-To: <20030918010728.GB14063@kongemord.krig.net> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.1 Subject: Re: ipfw + trasnparent proxy X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Sep 2003 03:48:45 -0000 Hi there Why the redirectionis no working, what more I need? ${fwcmd} add fwd 127.0.0.1,3128 tcp from any to any 80 in via ${iif} thanks Marcos Bob Hall wrote: >On Thu, Sep 18, 2003 at 09:41:58AM +1200, Marcos Biscaysaqu wrote: > > >>Hi Bob. >> I have the proxy working and setting to trasnparent proxy, and I >>have got my IPFW working. the problem is >>I have my proxy on port 3218 and I want redirect all the traffic on port >>80 to my proxy so the client don't need setup the proxy in them browser. >>Do you know how can I make work it with IPFW. >>thanks >> >> > >OK. To recapitulate, you need > options IPFIREWALL #firewall > options IPFIREWALL_FORWARD #enable transparent proxy support >in the kernel config file, and then you need to recompile. If IPFW works, >then you obviously have the first. Make sure you've recompiled with the >second also. > >You need the following line in rc.firewall: > ${fwcmd} add fwd 127.0.0.1,3128 tcp from any to any 80 in via ${iif} >where iif is the internal interface that your proxy box uses to communicate >with your LAN. For example, my firewall file contains > iif="fxp0" > >Further questions should go to freebsd-questions, rather than >freebsd-stable. > >Bob Hall >_______________________________________________ >freebsd-stable@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-stable >To unsubscribe, send any mail to "freebsd-stable-unsubscribe@freebsd.org" > > > > -- Marcos Biscaysaqu Systems Administrator ThePacific.Net Ltd.