From owner-freebsd-current  Wed Jun 10 09:36:29 1998
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id JAA12365
          for freebsd-current-outgoing; Wed, 10 Jun 1998 09:36:29 -0700 (PDT)
          (envelope-from owner-freebsd-current@FreeBSD.ORG)
Received: from GndRsh.aac.dev.com (GndRsh.aac.dev.com [207.149.232.62] (may be forged))
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA12296
          for <current@freebsd.org>; Wed, 10 Jun 1998 09:36:16 -0700 (PDT)
          (envelope-from rgrimes@GndRsh.aac.dev.com)
Received: (from rgrimes@localhost)
	by GndRsh.aac.dev.com (8.8.8/8.8.8) id JAA14402;
	Wed, 10 Jun 1998 09:35:12 -0700 (PDT)
	(envelope-from rgrimes)
From: "Rodney W. Grimes" <rgrimes@GndRsh.aac.dev.com>
Message-Id: <199806101635.JAA14402@GndRsh.aac.dev.com>
Subject: Re: Annnonce: Transparent proxy patches
In-Reply-To: <Pine.BSF.3.95.980609213531.26901N-100000@current1.whistle.com> from Julian Elischer at "Jun 9, 98 10:06:39 pm"
To: julian@whistle.com (Julian Elischer)
Date: Wed, 10 Jun 1998 09:35:11 -0700 (PDT)
Cc: current@FreeBSD.ORG
X-Mailer: ELM [version 2.4ME+ PL32 (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-current@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

> 
> Chrisy Luke <chrisy@flix.net> posted a mixed set of patches
> recently that added the ability to do transparent proxying
> to FreeBSD, however there were several shortcomings.
> 1/ In particular you really needed 2 machines or to match 2 different
> rules to be able to do some redirections.
> 
> 2/ They were part of his 'multipath' patches.
> 
> I have separated them out and updted them for -current.
> I have also put in some code to allow local redirection of outgoing
> packets.
...

Hummm... this has some other interesting applications, one could control
which outbound connection was used from a multi-homed border router based
upon source ip address it appears:

ipfw add 2 fwd eth0 ip from X.X.X.0/24 to any
ipfw add 3 fwd eth1 ip from Y.Y.Y.0/24 to any

or does the code have this ability?  And/or do you need to be
more specific about protocols/ports?


-- 
Rod Grimes - KD7CAX - (RWG25)                   rgrimes@gndrsh.aac.dev.com
Accurate Automation, Inc.                   Reliable computers for FreeBSD
http://www.aai.dnsmgr.com

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message