Re: [tproxy] TPROXY + Arp Table
Thanks Bazsi. In a real life scenario, where my proxy server will be inside a firewall how can the proxy server make the routing decision? The trafic is always going to flow through the firewall/router and then come to the subnet having the proxy server. On Wed, 2007-08-15 at 11:01 -0700, Jojy Varghese wrote:
Hi I was trying the example code given with the patch and couldnt get it to work. Upon tcpdump'ing the packets, I found out that my firewall(Cisco) sends out a ARP request for the FOREIGN IP address i am masquerading the request as and after that the packet is dropped. How do I get around this problem? I am sure this is nothing unusual setting and I might be missing something fundamental here.
Any help is much appreciated.
the masquaraded IP address must be routed through the TProxy box. -- Bazsi Need a vacation? Get great deals to amazing places on Yahoo! Travel. ____________________________________________________________________________________ Got a little couch potato? Check out fun summer activities for kids. http://search.yahoo.com/search?fr=oni_on_mail&p=summer+activities+for+kids&c...
On Thu, 2007-08-16 at 15:24 -0700, Jojy Varghese wrote:
Thanks Bazsi. In a real life scenario, where my proxy server will be inside a firewall how can the proxy server make the routing decision? The trafic is always going to flow through the firewall/router and then come to the subnet having the proxy server.
Still, it has to be routed through the box, there are no other means to do address translation. Put the proxy in-line with the firewall, redirect proxy related traffic, and forward the rest. -- Bazsi
participants (2)
-
Balazs Scheidler
-
Jojy Varghese