On Friday 02 June 2006 19:59, Aguiar Magalhaes wrote:
> The proxy is correctly configured in all LAN machines,
> but the windows update is (trying) going out by port
> 80
1) Do not top post!
2) This is not a pf problem
3) Others already have pointed out how to fix this.
--
/"\ Best regards,
Hi,
The proxy is correctly configured in all LAN machines,
but the windows update is (trying) going out by port
80
--- Gergely CZUCZY <[EMAIL PROTECTED]> escreveu:
> On Fri, Jun 02, 2006 at 11:42:15AM -0300, Aguiar
> Magalhaes wrote:
> > Hi list,
> >
> > I'm using pf and squid in the same mach
>
> Is there a best way to unblock the windows update ??
>
Yes rebuild squid to operate as a transparent cache and redirect all
outbound port 80 traffic through it.
http://www.benzedrine.cx/transquid.html
gw2:~ # grep -i 3128 /etc/pf.conf
rdr pass on $Int $TCP from to ! port www ->
127.
I have no clue how to do it with pf, as i'm an iptables guy ...
in the prerouting table you can force a redirection for port 80.
i know for sure that it's possible with pf, i read about it for years and now
it's time to get my paws dirty :)
just check for "transparent proxy" setup where you redi
On Fri, Jun 02, 2006 at 11:42:15AM -0300, Aguiar Magalhaes wrote:
> Hi list,
>
> I'm using pf and squid in the same machine..
>
> All of browsers in the LAN are configured to use the
> proxy at 3128 port.
>
> Using tcpdump, i've noted the LAN machines (run
> windows update) are trying to stabili
Hi list,
I'm using pf and squid in the same machine..
All of browsers in the LAN are configured to use the
proxy at 3128 port.
Using tcpdump, i've noted the LAN machines (run
windows update) are trying to stabilish direct connect
to external servers on port 80. So, they're being
blocked..
Is th
Synopsis: [pf] pf needs a way of matching on decapsulated IPSEC packets
Responsible-Changed-From-To: freebsd-pf->thompsa
Responsible-Changed-By: thompsa
Responsible-Changed-When: Fri Jun 2 10:48:13 UTC 2006
Responsible-Changed-Why:
I have a working if_enc patch, grab this PR.
http://www.freebsd.
On Friday 02 June 2006 10:48, Dmitry Andrianov wrote:
> I'm not sure enc0 is the solution.
>
> Honestly, I haven't tried enc0 yet (only took a look at its sources) so
> I can be wrong. But to my understanding if you build kernel with
> FILTERGIF, then decapsulated packets will still be visible on t
Max,
I'm not sure enc0 is the solution.
Honestly, I haven't tried enc0 yet (only took a look at its sources) so
I can be wrong. But to my understanding if you build kernel with
FILTERGIF, then decapsulated packets will still be visible on the same
interface original ESP packets come to (in additio
The following reply was made to PR kern/86072; it has been noted by GNATS.
From: Max Laier <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED],
[EMAIL PROTECTED]
Cc:
Subject: Re: kern/86072: [pf] Packet Filter rule not working properly (with
SYNPROXY option)
Date: Fri, 2 Jun 2006 09:58:51 +0200
Ping.
Synopsis: [modules] Unload pf.ko cause page fault
State-Changed-From-To: feedback->closed
State-Changed-By: mlaier
State-Changed-When: Fri Jun 2 07:55:54 UTC 2006
State-Changed-Why:
Spring cleaning. Closed as per originator. Thanks.
http://www.freebsd.org/cgi/query-pr.cgi?pr=84370
Synopsis: [pf] pf needs a way of matching on decapsulated IPSEC packets
State-Changed-From-To: open->analyzed
State-Changed-By: mlaier
State-Changed-When: Fri Jun 2 07:51:47 UTC 2006
State-Changed-Why:
The solution for this is the enc(4) interface from OpenBSD. There are
ongoing porting efforts.
The following reply was made to PR kern/93829; it has been noted by GNATS.
From: Max Laier <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED],
[EMAIL PROTECTED]
Cc:
Subject: Re: kern/93829: [carp] pfsync state time problem with CARP +
Arp.Balance
Date: Fri, 2 Jun 2006 09:45:20 +0200
Spring cleaning:
13 matches
Mail list logo
