On Friday 17 May 2002 7:47 am, Axel Thimm wrote: > Hello, > > some time ago I had setup transparent http proxy with squid and netfilter > redirection. Although the DNAT/redirection to the squid machine kills the > destination address, squid reads the destination out of the host header of > the http get request. > > Unfortunately there is no such information within the FTP protocol. Is > there another way to achieve this with netfilter? I assume an ftp proxy > would have to become netfilter aware and somehow ask netfilter about the > original destination address. Maybe an ftp proxy would even have to patch > the kernel. > > Does something like that exist? Does this something also allow to check > incoming files for viruses (That is what I really need the transparent > proxy for)?
I have heard (on this list) of something called frox which is supposed to be able to be a transparent ftp proxy. I've never played with it though - I just remember it being mentioned. Hope it helps ? Antony.
