Hello,
I've recently started looking at ipfilter and would
appreciate any information on the following questions-
* When using IPfilter FTP proxy and NAT, does IPfilter
have the ability to translate the IP address and port
numbers that are embedded in the FTP payload?
(I've looked at the section "4.8. Magic Hidden Within
NAT; Application Proxies" in the ipfilter FAQ and it
mentions creation of dynamic rules for the FTP
sessions but nothing about embedded address
translations)
* Does the FTP proxy (or any other application proxy
that ipfilter supports) run as a "true" proxy(i.e.
terminate the TCP or UDP connection from the client
and initiate a new TCP or UDP connection to the
server)?
* If the FTP proxy doesn't run in "true" proxy mode,
does ipfilter reassemble non-local (ie strictly
transit) TCP packets to parse the complete FTP header
and relevant payload?
Thanks a lot..
Alberto Alesina
____________________________________________________
Start your day with Yahoo! - make it your home page
http://www.yahoo.com/r/hs
