[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: http proxy and pf



Did you compile squid with the right options (--enable-pf-transparent)?
Cheers,
-Mike
-----Original Message-----
From: David Jobes [mailto:djobes@xscanners.org]
Sent: Wednesday, March 12, 2003 11:30 AM
To: Pf
Subject: http proxy and pf
	I am trying to get either tinyproxy or squid working transparently
with pf
to no avail
here is the rules im using
ext_if = "de0"
honey_ip = "192.168.1.136"
squid_if  = "de2"
int_if = "de3"
lo_if = "lo0"
nat on de0 from 192.168.1.0/24 to any -> de0
rdr on de0 proto tcp from any to de0/32 port 80 -> 127.0.0.1 port 3128
pass in on $int_if proto tcp from 192.168.1.0/24 port 80 to $lo_int port
3128
pass out on $int_if proto tcp from 192.168.1.0/24 port 80 to 127.0.0.1 port
3128
pass out on $ext_if proto tcp from $lo_int to any port { 80, 3128 }
any help or am i completly off-base here
TIA
=========================================
David Jobes - CISSP
web: http://www.xscanners.org
aim: davidjobes31770
email: djobes@xscanners.org