Darren Reed wrote:
You can do this with IPFilter, but it requires the target of the rdr rule to be IPFilter aware. This is often called "transparent proxying."
So is there something the target of IPFilter aware software can do in that respect? "transparent proxying" I know of, but only in terms of out going connections behing bit-jacked to go to squid or similar, then out. This would also rewrite the IPs in question, although, in the other "direction".
Squid might have a mode where you can make it cogniscent of IPFilter and goes on toe setup transparent proxying....or it might not.
Don't know about squid. But stunnel -T certainly can do it, but it naturally needs kernel patch to be allowed to specify the peer IP when RDRing the packet. I don't think IPFilter lets stunnel do this as is.
Anyway, seems the answer is still that it can not be done with normal Unix servers.. yet.
Lund -- Jorgen Lundman | <[EMAIL PROTECTED]> Unix Administrator | +81 (0)3 -5456-2687 ext 1017 (work) Shibuya-ku, Tokyo | +81 (0)90-5578-8500 (cell) Japan | +81 (0)3 -3375-1767 (home)
