On Fri, 13 Dec 2002, Rob Walker wrote: > I agree that this is a good idea, using private addresses and such. > However, if the goal is to force outgoing web surfing to go somewhere > else, what about masquerading anything going to ports 80 and 443 from > the local machine. That way you wouldn't have to change the proxy > settings on whatever browser you were using.
This depends on the proxy. Usually you cannot just forward HTTP connections to a proxy because most proxies require a slightly different format of the request (e.g. "GET http://www.debian.org/ HTTP/0.9" instead of "GET / HTTP/0.9". It's even worse if the proxy requires authentication). Walter
