*BSD News Article 76911

Return to BSD News archive 

Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!nntp.coast.net!news-res.gsl.net!news.gsl.net!news.mathworks.com!newsfeed.internetmci.com!newsxfer2.itd.umich.edu!uunet!in2.uu.net!EU.net!usenet2.news.uk.psi.net!uknet!usenet1.news.uk.psi.net!uknet!dispatch.news.demon.net!demon!awfulhak.demon.co.uk!awfulhak.demon.co.uk!awfulhak.demon.co.uk!not-for-mail
From: brian@awfulhak.demon.co.uk (Brian Somers)
Newsgroups: comp.unix.bsd.freebsd.misc
Subject: Re: IP Masqerading?
Date: 25 Aug 1996 22:33:49 +0100
Organization: Coverform Ltd.
Lines: 35
Message-ID: <4vqgrt$sm@anorak.coverform.lan>
References: <jfortes-1307951117380001@10.0.2.15> <320F6E48.1EF468BB@lambert.org> <4urdc4$87m@herald.concentric.net> <32127AB2.21876B97@lambert.org> <4va0s1$in@anorak.coverform.lan> <321A00A2.2D730BF6@lambert.org>
NNTP-Posting-Host: localhost.coverform.lan
X-NNTP-Posting-Host: awfulhak.demon.co.uk
X-Newsreader: TIN [version 1.2 PL2]

Terry Lambert (terry@lambert.org) wrote:
: Brian Somers wrote:
: ] 
: ] Terry Lambert (terry@lambert.org) wrote:
: ] 
: ] : 1)      Socks5 -- that's Socks****5**** -- supports proxying without
: ] :         modifying applications.
: ] 
: ] Ah, in that case forgive my rather abrupt posting saying that proxies
: ] are not transparent.  How does this work then ?

: I don't know.  The port maintainer said it did whene we had
: this whole discussion on the -hackers list a month ago.

: Personally, I'll never configure it (on principle), so I'm not
: a good person to ask.

I downloaded socks5 - According to rfc1919 (Transparent proxies), the
OS has to have some way of letting an app see connection requests
not addressed to the interface that they're seen on.....  There's
no mention of "transparent" in the socks documentation, nor of how
to make the OS "listen" to packets not addressed to itself :(

In fact, if I put the socks5 program on the ftp port, it complains
that it's unable to determine the client version number...  According
to the same rfc, things such as ftp "normally" accept user@host as
a way of "forwarding" to the real machine..... not even a "hi" from
it.

I'm obviously missing something - something BIG.  Pity it's not mentioned
in the docs (or the FAQ).

--
Brian <brian@awfulhak.demon.co.uk>
Don't _EVER_ lose your sense of humour....