Date: Thu, 24 Jul 1997 01:04:37 -0400 From: Dan Janowski <danj@3skel.com> To: hackers <freebsd-hackers@freebsd.org> Subject: ipfw divert, transparent proxy Message-ID: <33D6E265.46DEFC7@3skel.com>
next in thread | raw e-mail | index | archive | help
I am replacing an old TIS firewall that has one very interesting feature that I am looking to provide with my FreeBSD 2.2.2 box. It is this: They use ipfs which has the capability of "transparently" doing packet re-rerouting and, thereby, proxy transparently. (This is my understanding from looking at the config for about five minutes) With the TIS firewall set as a client's default router, this "transparent" mechanism will take a packet that is destined for x.x.x.x:port, where x.x.x.x is an exterior Internet address, and essentially drop the IP address and deliver the packet to the local "port". This has some limited usefulness. Some services, like whois, that always go to the InterNIC can be automatically proxied. In this particular case, AOL (yuck) is the problem. There is no proxying for AOL's client, but this transparent mechanism works very well. How can I do this? I know that the current ipfw supports divert sockets, but I don't see any references to a general purpose proxy (like plug-gw) that supports diverts. Delegate does application proxy, but I don't see divert support there. Any hints? Thanks, Dan -- danj@3skel.com Dan Janowski Triskelion Systems, Inc. Bronx, NY
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?33D6E265.46DEFC7>