tobias Freitag wrote:
Hi list,
I am trying to implement a transparent proxy using the pf rdr action but my
clients ignore the icmp redirects that are send out by the openbsd box. I
tried to get it to use adress translation instead, but no avail.
The box is set to router mode (net.inet.ip.forwarding=1) and sending of
redirects is switched off (net.inet.ip.redirect=0) but shamelessly ignored.
Any ideas?
Tobias Freitag
You don't give very much information.
What version of OpenBSD are you running? 2.x? 3.x? 4.0?
How do you know they are not getting proxy'd?
If I had this problem, I would verify the syntax of the rdr rule. I
would also make sure PF is enabled (pfctl -e). If you have all of these
things correct, you clients should hit the proxy. Without more info, I
don't know if anyone can help.
