[3101] in linux-net channel archive
Re: Proxy or Masquerade or what?
daemon@ATHENA.MIT.EDU (Jos Vos)
Tue Jun 4 10:10:49 1996
From: Jos Vos <jos@xos.nl>
To: abel@netvision.net.il (Harvey J. Stein)
Date: Tue, 4 Jun 1996 09:46:13 +0200 (MET DST)
Cc: linux-net@vger.rutgers.edu, kambiz@malibu.concord.ca.us
In-Reply-To: <199606031650.SAA27946@blinky.cpaf.com> from "Harvey J. Stein" at Jun 3, 96 06:50:27 pm
> Kambiz Aghaiepour writes:
> > I have a linux system connected to the internet via local ISP. I have
> > been assigned only a single IP address and I would like to be able to
> > have my friends make PPP connections to my system and see the internet
> > from their own machines using my linux box as a gateway to the internet
> > (I have an ISDN connection).
> >
> > I know I can make up the IP addresses for the PPP connection (Isn't
> > there a class C reserved for internal use written up in the RFCs?) but
> > how would the reply packets be routed to my PPP peer if the source
> > address is coming from an IP that is meant for internal use? Do I need
> > to use proxy services, masquerading or what?
>
> Yes. That's exactly what you need (unless you do some sort of port
> mapping which I've never understood). The more powerful technique
> would be to use ip masqerading. Otherwise you could use proxy servers
> & use SOCKS.
>
> If you use SOCKS, the friends that connect to your machine would have
> to use socksified clients. This won't be a problem with netscape,
> since it already supports socks. For other services, they'd have to
> get socksified clients, or (if they're using MS Windoze) a socksified
> winsock.
Note that the current kernel versions also support facilties for using
transparent proxies. You then need to modify existing proxy servers a bit
(like the servers from the TIS firewall toolkit), but you don't need clients
supporting any kind of proxy (like SOCKS, or an explicit proxy server).
However, the above case is a typical example where IP masquerading can be
used.
--
-- Jos Vos <jos@xos.nl>
-- X/OS Experts in Open Systems BV | Phone: +31 20 6938364
-- Amsterdam, The Netherlands | Fax: +31 20 6948204
