proxies and firewalls

JJB Barbish3 at
Mon Feb 2 08:52:17 PST 2004

Thanks for your reply, But I must be thick headed this morning,
because what you say below makes no sense to me.
I checked out the 2 referenced descriptions and they say
nothing about doing nat.

I have Lan with private ip address that send packets to
public internet. How does an proxy server solve the private ip
address versus my public ip address problem?

-----Original Message-----
From: owner-freebsd-questions at
[mailto:owner-freebsd-questions at]On Behalf Of
jan.muenther at
Sent: Monday, February 02, 2004 11:28 AM
Cc: Jorn Argelo; questions at
Subject: Re: proxies and firewalls

> Are you saying you know of an proxy server that does the nat
> function?

Actually, the point of having  proxies is *not* having
to route. Your proxy machine should not be able to forward packets.

Roughly, there a two different sub-groups: Circuit layer and
layer proxies, names should be self explaining.

Example for an app layer gateway:

Port:   fwtk-2.1
Path:   /usr/ports/security/fwtk
Info:   A toolkit used for building firewalls based on proxy

Example for a circuit level proxy:

Port:   nylon-1.2
Path:   /usr/ports/net/nylon
Info:   A Unix SOCKS 4 and 5 proxy server

Socks5 is already app layer, too, IIRC.

Cheers, J.

freebsd-questions at mailing list
To unsubscribe, send any mail to
"freebsd-questions-unsubscribe at"

More information about the freebsd-questions mailing list