Trent Lloyd
lathiat at bur.st
Tue Oct 25 07:54:26 CDT 2005
On Tue, Oct 25, 2005 at 12:01:49PM +0100, Stephen Shirley wrote:
> On Mon, Oct 24, 2005 at 08:50:23PM -0400, Jay Camp wrote:
> > You might be considering this, but I'll throw this out there anyway.
> > You might want to look into using iptables to transparently forward the
> > traffic to the proxy server. This way all applications will instantly
> > work since to them it will seem as if it is a direct network connection.
>
> Aye, i considered that approach, but it has problems. Applications that
> use ftp can't be transparently proxied.
A quick apt-cache search turns up 'frox' which has transparent proxy
support, I haven't tried it, but it may be worth a look.
----
Description: Transparent caching ftp proxy
Frox is an FTP proxy with the following features.
- Written with security in mind, default setup runs as a non-root user in
a chroot jail.
- It supports caching of FTP downloads, either through a local cache, or
by redirecting connections through another proxy such as squid.
- Downloads may be transparently scanned for viruses (through an external
scanner).
- Controllable via scripts, there is an interface for writing scripts to
add features or modify frox's behavior, examples included.
.
Transparent proxy support is not automatically setup by this package.
----
> Also, that approach fails in the
> case where there are no proxies around, and direct net connection is
> available.
It hardly fails in that case, in that case you drop it out of iptables,
same as you'd deconfigure a proxy.
Trent
>
> Steve
> --
> "Your brain is the ice-cube in the drink of what you say" -D
>
> --
> ubuntu-devel mailing list
> ubuntu-devel at lists.ubuntu.com
> http://lists.ubuntu.com/mailman/listinfo/ubuntu-devel
--
Trent Lloyd <lathiat at bur.st>
Bur.st Networking Inc.
More information about the ubuntu-devel
mailing list