Matthew Petach wrote:
> *sigh* Except that ipfwadm is unique to each platform. I'm aiming
> for a platform independent, kernel-structures independent solution
> for those using redirection hardware already.
I am afraid this is not possible until all clients are HTTP 1.1 (or at
least sends a Host: header). The only way to redirect traffic without
modifying the kernel is to use a external redirector that rewrites the
traffic att the IP level, replacing the destination address with the
address of your Squid. One big problem here is that the real destination
address is hidden from Squid, and if no Host: header is available then
there is no way to find out which server to contact.
Today you need to do the redirection at the MAC level using clever
routing maps (or equivalent), and transparent-proxy support in the
kernel to get the host to accept the redirected traffic and forward it
to the local application (Squid).
The closest to platform independent you get is ipfilter, that is already
supported on a large number of different platforms.
--- Henrik Nordström Sparetime Squid HackerReceived on Sun Mar 01 1998 - 10:45:22 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:39:07 MST