[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ipfilter
Subject:    Transparent proxying/routing
From:       Oleg Kolesnik <svd () gw ! uct ! kiev ! ua>
Date:       1999-12-30 20:32:39
[Download RAW message or body]


Hello !  I have the following problems, please help me.  

1. I implemented transparent proxy with ipnat. When I run ipnat on the
machine (FreeBSD-2.2.8, ipfilter-3.2.10) where squid works (rdr 0.0.0.0/0
80 -> 127.0.0.1 3128) and set that machine as a default router for LAN (or
rather for part of LAN) everything works OK. But it didn't work when I
redirect http packets to another host (FreeBSD-3.2) where squid is running
as well (rdr 0.0.0.0/0 -> <remote_host> 3128).

What seems to be a problem ? Is it because ipnat doesn't redirect packets
to another host:port ?

2. And I have a problems with tranparent routing. I used 

pass/block (I tried both) in quick on ed1 to ed1:<ip_adress> from any to 
any 
I also tried this rule with "proto ...".  

The result was the same every time: my machine got frozen !! Sometimes it
happened immediately after I run ipf with this rule, sometimes it worked
for seconds/minutes and then hung up, sometimes it hung up after I did
treceroute on another host to test how routing works.

3. And the same was when I tried to implement the "fastroute" feature. The
system stopped immediately after I had try to test it with traceroute.

Thank you.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Oleg Kolesnik	       e-mail: svd@uct.kiev.ua
___________________________________________________________

[prev in list] [next in list] [prev in thread] [next in thread]