transparent proxy
jay at experts-exchange.com
jay at experts-exchange.com
Tue Jan 4 01:56:59 UTC 2011
> Something like: pass in log on $int_if route-to ($int_if 127.0.0.1) from
> 192.168.103.1 synproxy state
Interesting, the client shows :
CONNECTED(00000003)
Pflog shows (this time 192.168.103.69 was used in place of 192.168.103.1):
1294126958.718778 rule 0/0(match): pass in on ed0: (tos 0x0, ttl 64, id
6708, offset 0, flags [DF], proto TCP (6), length 60)
192.168.103.69.51472 > 192.168.103.62.443: Flags [S], cksum 0xb80b
(correct), seq 4218566242, win 5840, options [mss 1460,sackOK,TS val
5844054 ecr 0,nop,wscale 7], length 0
For tcpdump, there was no network communication. I guess it's close, but
not yet working.
More information about the freebsd-pf
mailing list