Re: [pfSense Support] port redirect

2008-10-17 Thread Chris Buechler
On Thu, Oct 16, 2008 at 6:12 AM, David Barbero <[EMAIL PROTECTED]> wrote: > > Not exactly, this will not happen if redirects all lan traffic except the > traffic from the proxy: > > rdr on $int_if proto tcp from !192.168.1.40 to any port 80 -> 192.168.1.40 > port PROXY_PORT > Yes but pfSense does

Re: [pfSense Support] port redirect

2008-10-16 Thread David Barbero
"Chris Buechler" <[EMAIL PROTECTED]> ha escrito: On Wed, Oct 15, 2008 at 12:20 PM, Mikel Jimenez <[EMAIL PROTECTED]> wrote: Hello Is possible to redirect requests to xx port to aaa.bbb.ccc.ddd:xx? I have 192.168.1.0 LAN, my proxy is in 192.168.1.40 and pfsense LAN interface is 192.168.1.100.

Re: [pfSense Support] port redirect

2008-10-16 Thread David Barbero
"Alfred Sawaya" <[EMAIL PROTECTED]> ha escrito: Do yuo want to do a transparent proxy but not with pfsense squid package ? just redirect any:80 to your proxy with a firewall rule. Any??? Not, just redirect !192.168.1.40:80 to 192.168.1.40:3128/8080/your_proxy_port, if you put any in that

Re: [pfSense Support] port redirect

2008-10-16 Thread Mikel Jimenez
So, if I have 2 LAN interfaces in the Pfsense, and one WAN, and my lan is in 192.168.1.0/24 (LAN1) and proxy in 172.16.1.0/24 (172.16.1.1 LAN2), how can Idefine the rule to destiny all 80 and 443 traffic from 192.168.1.0 to 172.16.1.1? NAT rule? What Menu? Another thing, when is estimate the

Re: [pfSense Support] port redirect

2008-10-15 Thread Chris Buechler
On Wed, Oct 15, 2008 at 6:37 PM, Alfred Sawaya <[EMAIL PROTECTED]> wrote: > > yep, so you just have to add a rule from proxy:80 -> any = pass and put > it before the rule any:80 -> proxy:81, no ? > No because they're NAT rules not firewall rules and you cannot exclude anything on a single interfac

Re: [pfSense Support] port redirect

2008-10-15 Thread Chris Buechler
On Wed, Oct 15, 2008 at 6:13 PM, Alfred Sawaya <[EMAIL PROTECTED]> wrote: > Chris Buechler a écrit : >> >> Yes and no. You can add a port forward on LAN that will accomplish >> this. But it isn't source-specific, so the box you redirect the >> traffic to will have to reside on another interface oth

Re: [pfSense Support] port redirect

2008-10-15 Thread Alfred Sawaya
Chris Buechler a écrit : > On Wed, Oct 15, 2008 at 6:13 PM, Alfred Sawaya <[EMAIL PROTECTED]> wrote: > >> Chris Buechler a écrit : >> >>> Yes and no. You can add a port forward on LAN that will accomplish >>> this. But it isn't source-specific, so the box you redirect the >>> traffic to wil

Re: [pfSense Support] port redirect

2008-10-15 Thread Alfred Sawaya
Chris Buechler a écrit : > On Wed, Oct 15, 2008 at 12:20 PM, Mikel Jimenez <[EMAIL PROTECTED]> wrote: > >> Hello >> >> Is possible to redirect requests to xx port to aaa.bbb.ccc.ddd:xx? >> >> I have 192.168.1.0 LAN, my proxy is in 192.168.1.40 and pfsense LAN >> interface is 192.168.1.100. >> >>

Re: [pfSense Support] port redirect

2008-10-15 Thread Chris Buechler
On Wed, Oct 15, 2008 at 12:20 PM, Mikel Jimenez <[EMAIL PROTECTED]> wrote: > Hello > > Is possible to redirect requests to xx port to aaa.bbb.ccc.ddd:xx? > > I have 192.168.1.0 LAN, my proxy is in 192.168.1.40 and pfsense LAN > interface is 192.168.1.100. > > I want that, the clients (gateway 192.1

Re: [pfSense Support] port redirect

2008-10-15 Thread Alfred Sawaya
Firewall -> rules i think, I don't have pfsense to verify right now. you add a rule on LAN interface : any:80 -> proxy that's how we build a transparent proxy. mikel a écrit : > Can you especifi more please? > > In what Menu? > > On Wed, 15 Oct 2008 18:29:36 +0200, Alfred Sawaya <[EMAIL PROTECTED]

Re: [pfSense Support] port redirect

2008-10-15 Thread Glenn Kelley
I was thinking the same thing - in our transparent proxy I would love to redirect some traffic to a different ip Glenn On Oct 15, 2008, at 1:19 PM, mikel wrote: Can you especifi more please? In what Menu? On Wed, 15 Oct 2008 18:29:36 +0200, Alfred Sawaya <[EMAIL PROTECTED] > wrote

Re: [pfSense Support] port redirect

2008-10-15 Thread mikel
Can you especifi more please? In what Menu? On Wed, 15 Oct 2008 18:29:36 +0200, Alfred Sawaya <[EMAIL PROTECTED]> wrote: > Do yuo want to do a transparent proxy but not with pfsense squid package ? > > just redirect any:80 to your proxy with a firewall rule. > > > Mikel Jimenez a

Re: [pfSense Support] port redirect

2008-10-15 Thread David Meireles
For that you'll have to mention in the DHCP server that the gateway will be the proxy's IP (you can do that in pfSense's DHCP Proprieties). But, unless you have a really good reason, I would advise you to use the squid+squidGuard package in the pfSense box Mikel Jimenez escreveu: Hello Is pos

Re: [pfSense Support] port redirect

2008-10-15 Thread Alfred Sawaya
Do yuo want to do a transparent proxy but not with pfsense squid package ? just redirect any:80 to your proxy with a firewall rule. Mikel Jimenez a écrit : > Hello > > Is possible to redirect requests to xx port to aaa.bbb.ccc.ddd:xx? > > I have 192.168.1.0 LAN, my proxy is in 192.168.1.40 and

[pfSense Support] port redirect

2008-10-15 Thread Mikel Jimenez
Hello Is possible to redirect requests to xx port to aaa.bbb.ccc.ddd:xx? I have 192.168.1.0 LAN, my proxy is in 192.168.1.40 and pfsense LAN interface is 192.168.1.100. I want that, the clients (gateway 192.168.1.100) that navigate throught internet, pass first by the proxy, transparently. Is