Mike,
The plug-gw suffers this problem because the proxy can't determine which destination of several to actually connect to.
Anyway, the plug-gw in the TIS Gauntlet Internet Firewall can do one to many with the plug-gw because with transparency, the destination can be pulled from the packet.
If you really want to roll your own, I suggest you might want to contact jsanchez @
gmv .
es and ask for his Linux transparency mods for the fwtk.
Best Regards,
Jeff Jones
- - - - - - - - - - - - -
Jeffrey R. Jones JJones @
tis .
com
Firewalls and Network Security, Europe JJones @
gauntlet .
demon .
co .
uk
Trusted Informations Systems (UK) Ltd phone: +44 1734 304 413
Commerce Park, Brunel Road fax: +44 1734 304 412
Theale, Berkshire RG7 4AB
United Kingdom
- - - - - - - - - - - - - - - - - - - - - - - - -
PGP Key fingerprint = C5 EF 8F 3F D5 ED 1C 61 09 63 90 3C 3B F2 46 2E
- - - - - - - - - - - - - - - - - - - - - - - - -
From: Mike Williams <mikew @
smartpt .
demon .
co .
uk>
Date: Mon, 06 Nov 1995 18:34:36 GMT
Subject: Generic Proxy
I can't believe this hasn't been discussed before but as I'm
relatively new to the list please forgive my ignorance.
Does anybody know of a generic tcp/udp proxy which does not suffer
from the limitations of the likes of plug-gw (no slight intended),
i.e. will support one-to-many connections to the same destination
port?
Is the answer to this client code that always connects to the proxy
but furnishes it with a name and destination port number of the
ultimate destination?
Does a, dare I suggest, standard exist for such communication?
Grateful for any feedback,
Mike.
Follow-Ups:
|
|
