[zorp] Zorp and Traffic Control

Philippe Lucas zorp@lists.balabit.hu
Tue, 20 May 2003 11:16:36 -0400 

My instances.conf :

zorp_http   --autobind-ip '192.168.100.135'    --verbose=5 --policy 
/etc/zorp/policy.py

I don't think you completly understood my request:

The system works fine. The client receives data from the server through 
the proxy zorp. The client doesn't see zorp in the packets (source IP) 
but the serveur does see zorp. I'd like zorp bee completly transparent.

My Logs :

May 20 06:01:40 bridge zorp_http[9677]: (noname/nosession): Verbosity 
level: 5
May 20 06:01:41 bridge zorp_http[9677]: zorp version 2.0.2 starting up
May 20 06:01:41 bridge zorp_http[9677]: (noname/nosession): 
Zone(site-net): outbound service=intra_http
May 20 06:01:41 bridge zorp_http[9677]: (noname/nosession): Zone(local): 
inbound service=*
May 20 06:01:41 bridge zorp_http[9677]: (noname/nosession): 
Zone(internet): inbound service=*
May 20 06:01:45 bridge zorp_http[9677]: (zorp@site/intra_http): Starting 
service; name='intra_http'
May 20 06:01:45 bridge zorp_http[9677]: (zorp@site/intra_http:0): 
Starting proxy instance; client_fd='16', 
client_address='AF_INET(192.168.100.199:2092)', 
client_zone='Zone(site-net, 192.168.100.0/24)', 
client_local='AF_INET(192.168.0.251:80)'
May 20 06:01:45 bridge zorp_http[9677]: (zorp@site/intra_http:0/http): 
Proxy starting; class='IntraHttp', module='http'
May 20 06:01:45 bridge zorp_http[9683]: (zorp@site/intra_http:0/http): 
Server connection established; server_fd='17', 
server_address='AF_INET(192.168.0.251:80)', server_zone='Zone(internet, 
0.0.0.0/0)', server_local='AF_INET(192.168.0.134:42488)'
May 20 06:01:45 bridge zorp_http[9677]: (zorp@site/intra_http): Starting 
service; name='intra_http'
May 20 06:01:45 bridge zorp_http[9677]: (zorp@site/intra_http:1): 
Starting proxy instance; client_fd='18', 
client_address='AF_INET(192.168.100.199:2093)', 
client_zone='Zone(site-net, 192.168.100.0/24)', 
client_local='AF_INET(192.168.0.251:80)'
May 20 06:01:45 bridge zorp_http[9677]: (zorp@site/intra_http:1/http): 
Proxy starting; class='IntraHttp', module='http'
May 20 06:01:45 bridge zorp_http[9684]: (zorp@site/intra_http:1/http): 
Server connection established; server_fd='19', 
server_address='AF_INET(192.168.0.251:80)', server_zone='Zone(internet, 
0.0.0.0/0)', server_local='AF_INET(192.168.0.134:42489)'

> On Fri, May 09, 2003 at 04:22:49PM -0400, Philippe Lucas wrote:
>> 
>> I would like make a transparent proxy, transparent for both the client and 
>> the server.
>> But my problem is that the transparency works for the client but not for 
>> the server.
>> 
>> Could you please help me ?
> 
> you probably did not create a dummy interface which is used for 'forging'
> addresses.
> 
> Please check the log messages that Zorp emits at startup. It should state
> something like:
> 
> z_log(NULL, CORE_ERROR, 3, "Binding to dummy interface failed, please create one and pass --autobind-ip parameter; autobind='%s'", auto_bind_ip);
> 
> The default IP of the dummy interface is '1.2.3.4' but you can change this
> using the --autobind-ip command line argument in your instances.conf file.
>