Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 10 Jun 1998 18:12:48 +0000 (GMT)
From:      Terry Lambert <tlambert@primenet.com>
To:        brandon@engulf.net (Brandon Lockhart)
Cc:        current@FreeBSD.ORG
Subject:   Re: Annnonce: Transparent proxy patches
Message-ID:  <199806101812.LAA01532@usr01.primenet.com>
In-Reply-To: <Pine.BSF.3.96.980610075944.27256B-100000@engulf.net> from "Brandon Lockhart" at Jun 10, 98 08:03:52 am
next in thread | previous in thread | raw e-mail | index | archive | help 
> :> #gobble
> :> ipfw add 2 fwd localhost tcp from any to any 80 in
> :> 
> :> I believe Linux has had this for a short while..
> 
> Julian, you completely lost me here.  Is this to forward any incoming tcp
> connection to port 80 (http)?  If not, please explain what it would do.
> Also, can you give me a scenario where that would be useful?


1)	A client attempots connection through FreeBSD router to
	www.unitedmedia.com on port 80.

2)	The FreeBSD router redirects all queries to any host's port
	80 to connect to not the requested host, but to a transparent
	proxy program that has bound a different port on the router.

3)	The transparent proxy program writes the proxy information
	(basically, the real destination host and prefix) into the
	HTTP request, and then sends it to the original target.

4)	The original target is redirected to a different machine,
	running SQUID, or some ofther HTTP compliant proxy server.

The client gets a response from SQUID via the router, and thinks
it actually came from the machine it asked for the response from,
and not the cache.

The client doesn't have to configure a browser proxy.

If you have 50,000 clients, you don't have to configure 50,000
browser proxies.

The Mac "Surfwatch" program, which is a transparent cache with
prefetch, doesn't malfunction when you mandate the use of a proxy
in your corporate net.

You only download one copy of "Dilbert" a day, instead of one per
engineer.

Your T1 is happy again.  8-).


					Terry Lambert
					terry@lambert.org
---
Any opinions in this posting are my own and not those of my present
or previous employers.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199806101812.LAA01532>