Return to BSD News archive
Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!news.cs.su.oz.au!metro!metro!asstdc.scgt.oz.au!nsw.news.telstra.net!act.news.telstra.net!psgrain!iafrica.com!pipex-sa.net!plug.news.pipex.net!pipex!tank.news.pipex.net!pipex!news.be.innet.net!INbe.net!news.nl.innet.net!INnl.net!hunter.premier.net!news-res.gsl.net!news.gsl.net!news-lond.gsl.net!news.gsl.net!dispatch.news.demon.net!demon!awfulhak.demon.co.uk!awfulhak.demon.co.uk!awfulhak.demon.co.uk!not-for-mail From: brian@awfulhak.demon.co.uk (Brian Somers) Newsgroups: comp.unix.bsd.freebsd.misc Subject: Re: IP Masqerading? Date: 26 Aug 1996 12:58:52 +0100 Organization: Coverform Ltd. Lines: 45 Message-ID: <4vs3hs$23u@anorak.coverform.lan> References: <jfortes-1307951117380001@10.0.2.15> <320F6E48.1EF468BB@lambert.org> <4urdc4$87m@herald.concentric.net> <32127AB2.21876B97@lambert.org> <4va0s1$in@anorak.coverform.lan> <321A00A2.2D730BF6@lambert.org> <4vqgrt$sm@anorak.coverform.lan> NNTP-Posting-Host: localhost.coverform.lan X-NNTP-Posting-Host: awfulhak.demon.co.uk X-Newsreader: TIN [version 1.2 PL2] Brian Somers (brian@awfulhak.demon.co.uk) wrote: : Terry Lambert (terry@lambert.org) wrote: : : Brian Somers wrote: : : ] : : ] Terry Lambert (terry@lambert.org) wrote: : : ] : : ] : 1) Socks5 -- that's Socks****5**** -- supports proxying without : : ] : modifying applications. : : ] : : ] Ah, in that case forgive my rather abrupt posting saying that proxies : : ] are not transparent. How does this work then ? : : I don't know. The port maintainer said it did whene we had : : this whole discussion on the -hackers list a month ago. : : Personally, I'll never configure it (on principle), so I'm not : : a good person to ask. : I downloaded socks5 - According to rfc1919 (Transparent proxies), the : OS has to have some way of letting an app see connection requests : not addressed to the interface that they're seen on..... There's : no mention of "transparent" in the socks documentation, nor of how : to make the OS "listen" to packets not addressed to itself :( : In fact, if I put the socks5 program on the ftp port, it complains : that it's unable to determine the client version number... According : to the same rfc, things such as ftp "normally" accept user@host as : a way of "forwarding" to the real machine..... not even a "hi" from : it. : I'm obviously missing something - something BIG. Pity it's not mentioned : in the docs (or the FAQ). : -- : Brian <brian@awfulhak.demon.co.uk> : Don't _EVER_ lose your sense of humour.... Well, I've got it working as a "classic" proxy.... using netscape on my Win95 box.... ftp works too (through port 1080). So what about the transparent bit ? Anyone know ? Maybe it uses the bpf device to hear and the tun device to send ? -- Brian <brian@awfulhak.demon.co.uk> Don't _EVER_ lose your sense of humour....