[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: MSIE automatic proxy config



Shachar Shemesh wrote:
 
> You will find that your solution forwards ALL outbound packets to the proxy
> machine. Not just those aimed at port 80. You are then left with my original
> problem - I don't want to penalise the entire office traffic with an extra hop
> (actually - extra two hops and a routing loop in your solution), just because
> I want to implement a transperant proxy. A much simpler solution for me is to
> block all communication to port 80 outbound, and force everyone to manually
> configure the proxy or they don't get web access.
> 

And once again I must say: "Don't think so 3rd layer, JeanLuke".

I was about to explain how to build a 2d level (OSI) bridiging proxy but
someone already did:
http://perso.wanadoo.fr/magpie/EtherDivert.html

No extra hop, no need for another subnet, batteries not included...

I do suggest however, you use the new bridge patch ported from
2.4.0-testx that can be found at http://www.openrock.net/bridge and not
the original 2.2.x bridiging code.

Gilad.
-- 
Gilad Ben-Yossef <gby@kagoor.com> 
http://kagoor.com | +972(9)9565333 x230 | +972(54)756701
"I've been seduced by the chocolate side of the force."

=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il