From owner-freebsd-net  Mon Jul 19 14:37: 6 1999
Delivered-To: freebsd-net@freebsd.org
Received: from alpo.whistle.com (alpo.whistle.com [207.76.204.38])
	by hub.freebsd.org (Postfix) with ESMTP id E489215298
	for <freebsd-net@FreeBSD.ORG>; Mon, 19 Jul 1999 14:37:03 -0700 (PDT)
	(envelope-from julian@whistle.com)
Received: from current1.whistle.com (current1.whistle.com [207.76.205.22])
	by alpo.whistle.com (8.9.1a/8.9.1) with SMTP id OAA47439;
	Mon, 19 Jul 1999 14:35:57 -0700 (PDT)
Message-ID: <37939A3C.FF6D5DF@whistle.com>
Date: Mon, 19 Jul 1999 14:35:56 -0700
From: Julian Elischer <julian@whistle.com>
Organization: Whistle Communications
X-Mailer: Mozilla 3.0Gold (X11; I; FreeBSD 2.2.8-STABLE i386)
MIME-Version: 1.0
To: Milan Kopacka <Milan.Kopacka@st.ms.mff.cuni.cz>
Cc: freebsd-net@FreeBSD.ORG,
	Konference o transparentni proxy <tpc-l@freebsd.cz>
Subject: Re: Tcp shadowing for use in HTTP proxy
References: <Pine.SGI.4.05.9907192119580.666417-100000@beta.ms.mff.cuni.cz>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Look at the 'fwd' option to the ipfw software.

julian


Milan Kopacka wrote:
> 
> Hi,
> 
> The goal of alobal project is to design and implement transparent proxy
> cache for the HTTP protocol, used on TCP/IP networks for transmitting WWW
> pages. One of alobal's important features is full transparency for
> communicating partners. Usual transparent cache takes over client's
> connections and gets the data for them. However, the server sees as his
> communicating partner the cache machine.
> 
> To solve this missing transparency, cache should connect to http server
> using client's IP address. However, such address is in use by original
> client and we still need to communicate with it. Cache node will need a
> "shadow" interface, which is used to make such connections. Shadow
> interface accepts packets destined to specified hosts (and redirected to
> localhost) and delivers them to localhost. On the other hand, it is not
> used by routing to deliver packets originating from localhost.
> 
> Setup and use of shadow interface is automatic - process creating TCP
> connection calls bind() to assign local IP address to socket. When such IP
> is not present on interfaces, it is added to the shadow interface list.
> When connection is terminated, address is removed from list. The list is
> for efficiency implemented as hash table with usage counts (we need to
> open multiple connections under one client's identity).
> 
> Please take look at http://www.ms.mff.cuni.cz/~mkop5230/tcp-shadow/
> and tell me what you think about it. There are patches against
> 3.2-RELEASE.
> 
> Thanks
> 
>   Milan Kopacka
> 
> --
> <Milan.Kopacka@st.mff.cuni.cz>
> ... a koho system nachyta na procesoru, tomu snizi prioritu.
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-net" in the body of the message


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message