Date: Fri, 01 Aug 2003 15:21:37 -0300 From: CPD - Equipe de =?iso-8859-1?Q?Seguran=E7a?= <security@pucrs.br> To: freebsd-ipfw@freebsd.org Subject: IPFW, Nat and transparent proxy ( on different machines ) Message-ID: <5.2.0.9.0.20030801151745.02d1cc18@pop3.pucrs.br>
next in thread | raw e-mail | index | archive | help
Dear gentleman, So far I've been running a FreeBSD 4.7 machine which runs NAT, IPFW and Squid , acting like a transparent proxy/cache , NAT box and packet filter/firewall. Now, the load is getting too heavy, so I'd like to use a second machine (with a second WAN link ) as a separate proxy for the HTTP traffic. Question is, how can I set up IPFW/NAT to send all the HTTTP ( port 80 only ) traffic that comes on the internal interface ( 192.160.0.1 ) to the new proxy-only machine's internal interface ( 192.168.0.2), and still have the rest of the traffic flowing normally through the other gateway, which will now run only NAT and IPFW as firewall. It's confusing somehow, I hope I managed to be clear enough. Thanks for any insight, - Alexandre
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5.2.0.9.0.20030801151745.02d1cc18>