Mailinglist Archive: proxy-suite (18 mails)

< Previous Next >
Re: [proxy-suite] Proxy-suite and transparent proxying on FreeBSD not working
  • From: Marius Tomaschewski <mt@xxxxxxx>
  • Date: Fri, 30 Aug 2002 20:18:04 +0000 (UTC)
  • Message-id: <20020830201759.GG22767@xxxxxxx>
On Mon, Aug 26, 2002 at 11:04:23PM +0200, Henrik Holmstam wrote:
> Hello all,

Hi!

It has worked fine on 4.4-release... I'm going to test / fix
some stuff reported last time - perhaps I find also time to
update FreeBSD on my test box and take a look on it as well...

Have you compiled the proxy on a 4.6-STABLE as well?
There was some natlook ioctl number differences between
ipfilter releases...
You may use strace (or ptrace or trace or truss) to trace
what fails. Or you can compile a debug version and take
a look to /tmp/ftp-proxy.debug.

If you are running it in a chroot, you need /dev/ipnat
in the chroot as well.

<offtopic>
Take a look on the rc.script.in init script - it is
SuSE like (needs /etc/rc.status), but it is easy to
adopt it to work with FreeBSD and OpenBSD...
Sould work, if you have a /etc/rc.status :-)
</offtopic>

> I'm having trouble getting transparent proxying working on my FreeBSD
> 4.6-STABLE machine. Non-transparent works fine with MagicChar.
>
> I'm using IPFilter v3.4.27 to redirect the packets.
>
> ipnat.rules:
>
> rdr rl0 0.0.0.0/0 port 21 -> 192.168.1.1 port 2121
>
> (rl0 is int interface)
>
> ftp-proxy.conf:
>
> [-Global-]
> AllowMagicUser yes
> AllowTransProxy yes
> DestinationTransferMode passive
> Listen 192.168.1.1
> LogDestination /var/log/proxy-suite/ftp-proxy.log
> LogLevel DBG
> Port 2121
> ServerType standalone
> UseMagicChar %
>
> turbo@sebulba:~$ ftp ftp.sunet.se
> Connected to ftp.sunet.se.
> 220 darkwing.home.lan FTP server (Version 1.9 - 2002/05/02 15:14:55) ready.
> Name (ftp.sunet.se:turbo): anonymous
> 501 Unknown destination address.
> ftp: Login failed.
>
> log:
>
> ftp-child [22788] <08/26-22:57:02> USER-INF connect from 192.168.1.15
> ftp-child [22788] <08/26-22:57:05> TECH-DBG no transparent proxy destination found
> ftp-child [22788] <08/26-22:57:05> USER-ERR unknown destination address
> ftp-child [22788] <08/26-22:57:05> USER-WRN 'SYST' without login from 192.168.1.15
>
> If I specify DestinationAddress to some server, it connects fine, so
> somehow it has trouble detecting the Destination when using normal
> transparent proxying.
>
> I would really like to get this working, so if anyone have any suggestions
> I would be thankful.
>
> Regards,
> Henrik Holmstam
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: proxy-suite-unsubscribe@xxxxxxxx
> For additional commands, e-mail: proxy-suite-help@xxxxxxxx

Gruesse,
Marius Tomaschewski <mt@xxxxxxx>
--
SuSE Linux AG, N├╝rnberg - SuSE Labs, Product Developement
PGP public key available: http://www.suse.de/~mt/mt.pgp
Fprint: EA 1F 92 75 1A F9 82 07 A1 28 DE 7A 32 E8 97 18

< Previous Next >
Follow Ups
References