[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: MSIE automatic proxy config



Gilad Ben-Yossef wrote:
> Ah... but this page specifically (item #7) instruct the seekers of
> transparent proxies to turn on the *kernel* IPchains firewalling/NAT
> code on and use it's transparent proxy option. What this option does is
> rewriting packets going through the machine (the "forward" chain, in
> IPChains speak) to reach a local socket instead.
> 
> Now I agree that the packets are never released unto the network, but
> they are rewritten so that the local machine IP stack will send them to
> the local socket.
> You know what, it's  a border line case. Let's call it a draw ;-)

Whatever you call it, it's not something specific to Linux. I have no
experience with Checkpoint firewalls (IIRC, that's what Shachar
mentioned), but surely they can redirect a packet from one port to
another one?

Gavrie.

-- 
Gavrie Philipson
Netmor Applied Modeling Research Ltd.

=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il