Re: "Proper" way to transparent proxy?

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Peter Surda <shurdeek@panorama.sth.ac.at>
To: netfilter-devel@lists.netfilter.org
Subject: Re: "Proper" way to transparent proxy?
Date: Wed, 9 Oct 2002 22:28:29 +0200	[thread overview]
Message-ID: <20021009202829.GF23068@noir.cb.ac.at> (raw)
In-Reply-To: <3DA48D59.7060109@secureinteriors.com>

[-- Attachment #1: Type: text/plain, Size: 804 bytes --]

On Wed, Oct 09, 2002 at 04:11:05PM -0400, Kevin White wrote:
> What we had on IPFilter was a "redirect" rule that redirected all 
> connections to external hosts on this specific port to a specific port 
> on the firewall machine, where a proxy program was waiting for it.  We 
> then used IPFilter system calls to retreive where the connection was 
> heading.
This is exactly how it works on linux, you redirect (or reroute+redirect if on
different machines), accept the connection and call a sysctl to find out real
destination. As for examples, there are several open source transparent
proxies:
- squid
- tircproxy
- jftpgw

> Kevin
Bye,

Peter Surda (Shurdeek) <shurdeek@panorama.sth.ac.at>, ICQ 10236103, +436505122023

--
                    "Where do you want to go to die?"

[-- Attachment #2: Type: application/pgp-signature, Size: 232 bytes --]

next prev parent reply	other threads:[~2002-10-09 20:28 UTC|newest]

Thread overview: 8+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2002-10-09 20:11 "Proper" way to transparent proxy? Kevin White
2002-10-09 20:28 ` Peter Surda [this message]
2002-10-09 20:40 ` Patrick Schaaf
2002-10-09 21:55   ` how to flush ip conntrack entries ? marian stagarescu
2002-10-14  0:59     ` Philip Craig
2002-10-14 19:20       ` marian stagarescu
2002-10-14 19:24         ` marian stagarescu
2002-10-10  1:15   ` "Proper" way to transparent proxy? Kevin White

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20021009202829.GF23068@noir.cb.ac.at \
    --to=shurdeek@panorama.sth.ac.at \
    --cc=netfilter-devel@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.