Good morning, I am having problems getting tinyproxy 1.6.3 to run transparently with pf.
I recompiled/reinstalled tinyproxy with --enable-transparent-proxy and restarted my system. I figured the key is to start simple and build from there. So, I set up the most simplistic pf ruleset: pass everything and log all traffic going in and out of the firewall. int_if="xl0" ext_if="rl0" set loginterface $int_if nat on $ext_if from !($ext_if) -> ($ext_if:0) rdr on $int_if inet proto tcp from $int_net to any \ port www -> 127.0.0.1 port 3128 pass in log all keep state pass out log all keep state Here is what happens: 1. As it stands, No internal clients can surf the internet. 2. If I comment out the rdr, my internal clients can surf the internet. 3. Leave rdr commented out, set internal browsers to use firewall addr plus port 3128 as proxy, my internal clients can surf the internet. All this would suggest that tinyproxy is not acting as a transparent proxy. But I'm not sure what to do next to figure it all out. Thanks and take care, Allen Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com