From owner-freebsd-pf@FreeBSD.ORG Tue Jan 4 01:56:59 2011 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 6A641106564A for ; Tue, 4 Jan 2011 01:56:59 +0000 (UTC) (envelope-from jay@experts-exchange.com) Received: from mail.experts-exchange.com (mail.experts-exchange.com [72.29.183.251]) by mx1.freebsd.org (Postfix) with ESMTP id 46B178FC0A for ; Tue, 4 Jan 2011 01:56:59 +0000 (UTC) Received: from mail.experts-exchange.com (localhost [127.0.0.1]) by mail.experts-exchange.com (Postfix) with ESMTP id EC01CCA785C; Mon, 3 Jan 2011 17:56:58 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d= experts-exchange.com; h=content-transfer-encoding:content-type :content-type:mime-version:user-agent:from:from:subject:subject :date:date:references:in-reply-to:message-id:received:received :received; s=ee; t=1294106218; x=1295920618; bh=eoKB3JMAqUAxfSCi BpMSs1P5X+e2ylhdwdS6yTvnIFA=; b=OfhrYGQlZSX63Jollhne6e+2pE9NnK+x EkKjyZbHkuncuv5W5NzNYL/UZyr5JSPFo+yEmTSWj6hKDCRZ0Fzybg+PtpH0352y NFp0Zw+bkXW6Ad5nvT6KTzl4DXMmnH1fhJ8KEQkqvNrdqx+z8SzMsi1kIlcPcx6q fuFriwp4BUo= X-Virus-Scanned: amavisd-new at experts-exchange.com Received: from mail.experts-exchange.com ([127.0.0.1]) by mail.experts-exchange.com (mail.experts-exchange.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3qBKZO0NQYcJ; Mon, 3 Jan 2011 17:56:58 -0800 (PST) Received: from mail.experts-exchange.com (localhost [127.0.0.1]) by mail.experts-exchange.com (Postfix) with ESMTP id AB6C2CA785B; Mon, 3 Jan 2011 17:56:58 -0800 (PST) Received: from 192.168.103.176 (SquirrelMail authenticated user jay) by mail.experts-exchange.com with HTTP; Mon, 3 Jan 2011 17:56:58 -0800 Message-ID: In-Reply-To: <4D20DD02.2090605@my.gd> References: <8fb3caa1300a9fcc5c2f23a70ade23a8.squirrel@mail.experts-exchange.com> <4D208AE2.6000402@my.gd> <3020c1e8b0ecb5e9bacb1033ddea2b3e.squirrel@mail.experts-exchange.com> <4D20BAEB.10101@my.gd> <5275a39aa1849d38d509a42b627dd4b0.squirrel@mail.experts-exchange.com> <4D20DD02.2090605@my.gd> Date: Mon, 3 Jan 2011 17:56:58 -0800 From: jay@experts-exchange.com To: "Damien Fleuriot" User-Agent: SquirrelMail/1.4.20 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal Cc: freebsd-pf@freebsd.org Subject: Re: transparent proxy X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 04 Jan 2011 01:56:59 -0000 > Something like: pass in log on $int_if route-to ($int_if 127.0.0.1) from > 192.168.103.1 synproxy state Interesting, the client shows : CONNECTED(00000003) Pflog shows (this time 192.168.103.69 was used in place of 192.168.103.1): 1294126958.718778 rule 0/0(match): pass in on ed0: (tos 0x0, ttl 64, id 6708, offset 0, flags [DF], proto TCP (6), length 60) 192.168.103.69.51472 > 192.168.103.62.443: Flags [S], cksum 0xb80b (correct), seq 4218566242, win 5840, options [mss 1460,sackOK,TS val 5844054 ecr 0,nop,wscale 7], length 0 For tcpdump, there was no network communication. I guess it's close, but not yet working.