SV: transparent proxying/caching with freebsd

> -----Ursprungligt meddelande-----
> Från: Clifton Royston [SMTP:cliftonr@malasada.lava.net]
> Skickat: den 20 september 1999 21:49
> Till: Dan Larsson
> Kopia: 'squid-users@ircache.net'
> Ämne: Re: transparent proxying/caching with freebsd
>
> On Mon, Sep 20, 1999 at 12:46:51PM +0200, Dan Larsson wrote:
> > I'm looking for real world examples on how to configure transparent proxying/caching with two
> > freebsd machines. In short I want requests on port 80 to be forwarded to machine B on port 3128.
> > I've read the FAQ, but I'm still unsure on how to do it in with freebsd on both sides.
>
> Which "both" sides are you talking about? It's unclear from your question
> how the first (non-Squid) BSD machine comes into the picture at all. If
> you're using it as a router with gated or a firewall host or something like
> that, then it's an issue of using the routing or packet redirection features
> of whatever software you're using on it.
 
Both sides as in redirecting/forwarding box (machine A) and caching box (machine B)
 
> If they can't do it, you may be able to use the NAT features of ipnat, which
> is part of the IP filters package, but I'm not sure how ipnat would interact
> with other software you might be running.

Machine A is compiled with IPFIREWALL and IPFIREWALL_FORWARD running no routing
daemons however enable_gateway is set to YES

Machine B runs squid compiled with the necessary items for transparent caching on freebsd.

> The basic rule is that to do transparent proxying, you need to intercept
> at a point "between" the query sources (web browsers) and the Internet.
> Usually that's the router for that ethernet segment, an Ethernet switch, or
> a firewall. How depends on what you're using.

Exactly, it's here where I'm evidently in need of a few examples where ipfw intercepts and forwards
and vice versa on the recieving end how to grab the forwarded packets and direct them the port where
squid is listening.
 
> Hope this helps get you started in where to look.
> -- Clifton
>
> --
> Clifton Royston -- LavaNet Systems Architect -- cliftonr@lava.net
> "An absolute monarch would be absolutely wise and good.
> But no man is strong enough to have no interest.
> Therefore the best king would be Pure Chance.
> It is Pure Chance that rules the Universe;
> therefore, and only therefore, life is good." - AC

I apologize for being unclear in my first message.. I hope this will make the issue clearer

Thanks in advance

/Dan
Received on Mon Sep 20 1999 - 14:21:08 MDT