tproxy on freebsd
Adrian Chadd
adrian at freebsd.org
Wed Apr 18 04:57:35 UTC 2007
On 18/04/07, zen <zen at tk-pttuntex.com> wrote:
> i think so, it work on most of linux machine depend on your linux kernel.
> here is the patch for the kernel :
> http://www.balabit.com/downloads/tproxy/
> but if i cand choose linux or FreeBSD i preferred FreeBSD ( i'm a
> FreeBSD die hard user).
> that's why i ask the people here, maybe they have solutions regarding
> this problems.
A little birdie has told me that this mode of transparent
client-spoofing is possible with FreeBSD with a little kernel hackery
(much less than whats needed for TPROXY.)
Maybe someone who "knows" the code better than I could comment on how
difficult it'd be to add in functionality to FreeBSD to spoof the
local IP of a connected socket for outbound connections. This of
course assumes symmetric traffic flows but thats already a given in a
setup like this.
Adrian
--
Adrian Chadd - adrian at freebsd.org
More information about the freebsd-stable
mailing list