[Gllug] how to check for a transparent proxy
Mark Lowes
hamster at korenwolf.net
Tue Dec 3 09:54:56 UTC 2002
On Mon, 2002-12-02 at 15:45, itsbruce at uklinux.net wrote:
> On Mon, Dec 02, 2002 at 02:12:30PM +0000, Pete Ryland wrote:
> > > Ah. You mean that the transparent proxy will, having diverted an ip
> > > packet on the way out and processed it, rewrite the source header of the
> > > ip packet to contain the original sender address before sending it out?
> > > And then watch for all replies to that ip address and re-divert them?
> > > Um, no. Not on any set-up I'm familiar with.
> >
> > Ok, indeed, this is possible. In fact, it wouldn't be that hard to set up
> > come to think of it.
>
> With iptables, yes, it should be possible. But I've not come across it
> done that way.
Generally the whole point of implementing a transparent proxy is to
force all http traffic into a locally controlled cache so that maximum
aggregation of content as close to the requestor as possible is
achieved.
Particularly when dealing with cheap / free dialup accounts where
keeping the bandwidth costs at the border right down is essential.
--
The Flying Hamster <hamster at korenwolf.net> http://www.korenwolf.net/
"Sex is like documentation, when it's good, it's very good, when it's bad,
it's better than nothing" - pir on asr
--
Gllug mailing list - Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug
More information about the GLLUG
mailing list