Article delegate-en/4336 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
search
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]

Newsgroups: mail-lists.delegate-en

[DeleGate-En] Few questions about transparent proxy & srcif
07 Jan 2009 16:12:21 GMT "Master NoSFeRaTU" <peihqbdyi-fjxi26ffzhtr.ml@ml.delegate.org>


Hello. I want to ask a few questions:
 Q1) I spend some time to search in mail-archives, but can't find how
to setup a squid-like transparent proxy(http_port 127.0.0.1:3128
transparent). I'm using freebsd, I add such rule:
ipfw add 2000 fwd 127.0.0.1,3128 tcp from CLIENTIP to any http
On 127.0.0.1:3128 run delegate, with various variants in config: from
RELAY=vhost to SERVER=http://odst.-:- But I receive any answers: from
redirection to nonCERNproxy page to "URL is Unknown or in Syntax
Error", but not a wanted requested site. :-( For example trying open
http://ya.ru/index.html, in log:

01/07 18:45:22.61 [10051] 1+0: -- Fork(SequentialServer): 10044 -> 10051
01/07 18:45:22.84 [10051] 1+1: FATAL: get{host|peer}name(49) failed, errno=0
01/07 18:45:22.84 [10051] 1+1: (0) accepted [49]
-@[10.1.100.100]n100.p100.internet.gnet:4743 (0.229s)(1)
01/07 18:45:22.84 [10051] 1+1: IGNORE request: Keep-Alive: 300^M
01/07 18:45:22.84 [10051] 1+1: = (1227718120) If-Modified-Since: Wed,
26 Nov 2008 16:48:40 GMT^M
01/07 18:45:22.84 [10051] 1+1: Proxy: host=n100.p100.internet.gnet;
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.0.4)
Gecko/2008103100 SUSE/3.0.4-3.1 Firefox/3.0.4; DIRECT
01/07 18:45:22.84 [10051] 1+1: HCKA:[0] keep-alive;
host=n100.p100.internet.gnet; (User-Agent: Mozilla/5.0 (X11; U; Linux
i686; en-US; rv:1.9.0.4) Gecko/2008103100 SUSE/3.0.4-3.1
Firefox/3.0.4)
01/07 18:45:22.84 [10051] 1+1: REQUEST - GET /index.html HTTP/1.1^M
01/07 18:45:22.84 [10051] 1+1: PATH>
http://ya.ru:80!ya.RU:80!n100.p100.internet.gnet:4743!anonymous@n100.p100.internet.gnet;1231343122
01/07 18:45:22.84 [10051] 1+1: REQUEST = (no-cache)[http://ya.ru:80/]
GET /index.html HTTP/1.1^M
01/07 18:45:22.84 [10051] 1+1: checking delegate-internal: self=1 GET
/index.html HTTP/1.1^M
01/07 18:45:22.84 [10051] 1+1: ERROR: Unknown internal: GET
/index.html HTTP/1.1^M
01/07 18:45:22.84 [10051] 1+1: ## hostIFto 10.1.100.100 < 10.1.100.1 (ff000000)
01/07 18:45:22.85 [10051] 1+1: Unknown internal: [ya.ru:80] /index.html
01/07 18:45:22.85 [10051] 1+1: E-U: Unknown:
n100.p100.internet.gnet:4743 => GET /index.html HTTP/1.1
[http://ya.ru:80]
(UNIX) 18:45:22.851 [10051] connect(22) REFUSED*1, retry after 500ms ...


 Q2) When using SRCIF to forward packets through specified interface
all works fine, until interface going to down. Then all packets are
going through default gateway, until interface stand up again.  In
logs I have that:

01/07 18:42:37.75 [9673] 1+1: bind_inet(14,192.168.77.5:0) failed:
ERRNO=49 (not a local port)
01/07 18:42:37.75 [9673] 1+1: [14] source port = 192.168.77.5:0 = 0.0.0.0:0
01/07 18:42:37.77 [9673] 1+1: ConnectToServer connected [14]
{213.180.204.14:80 <- 10.1.1.100:63943} [0.023s]
01/07 18:42:37.77 [9673] 1+1: willSTLS_SV: ServerFlags=0

There is exist any solution to disable such behavior and not routing
packets via default gateway with error like "no direct routing
available" if such ip for SRCIF in current time not available?

---
 WBR, NoSFeRaTU.

  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
@_@V