14 messages in org.freebsd.freebsd-questionsRe: IP Masquerading| From | Sent On | Attachments |
|---|---|---|
| Marco Masotti | Feb 5, 1996 6:13 am | |
| Jerry Kendall | Feb 5, 1996 6:19 am | |
| Paul T. Root | Feb 5, 1996 7:24 am | |
| Dave Andersen | Feb 5, 1996 9:25 am | |
| Marco Masotti | Feb 5, 1996 10:17 am | |
| Garrett A. Wollman | Feb 5, 1996 10:26 am | |
| Eric J. Schwertfeger | Feb 5, 1996 10:31 am | |
| Nate Williams | Feb 5, 1996 12:04 pm | |
| Dave Glowacki | Feb 5, 1996 1:58 pm | |
| Terry Lambert | Feb 5, 1996 2:31 pm | |
| Terry Lambert | Feb 5, 1996 2:33 pm | |
| Brian Tao | Feb 5, 1996 4:09 pm | |
| Michael Smith | Feb 5, 1996 5:12 pm | |
| Pedro A M Vazquez | Feb 11, 1996 8:07 am |
| Subject: | Re: IP Masquerading | |
|---|---|---|
| From: | Pedro A M Vazquez (vazq...@IQM.Unicamp.BR) | |
| Date: | Feb 11, 1996 8:07:15 am | |
| List: | org.freebsd.freebsd-questions | |
Terry Lambert said:
Actually, this isn't what he's talking about. The Linux implementation of IPFW includes some kernel mods that let a firewall translate (masquerade) "outgoing" requests, so that the packets have the firewall's IP address, and then retranslates the responses so that they get to the correct machine/port.
It's called "proxy".
It's not "masquerading" because you can't set up incoming FTP requests (for instance) to one of the proxied machines.
The "correct BSD way" of implementing this would be to provide a packet forwarding daemon that used the tunneling device to do it's thing.
It seems the latest ip-filter version (3.0.2) comes with NAT to make something like this ( http://coombs.anu.edu.au/�valon/ip-filter.html)
Pedro