On Sun, Mar 25, 2001 at 09:49:26AM +0200, Craig Schlenter wrote: > If you wanted to transparently proxy ftp, you'd need something catching > packets on port 21 rather than port 80. I still don't understand why you > can't use ftp masquerading directly in the kernel if you want transparency. > Sure it won't go through a userspace proxy but so what - what are you > hoping the userspace proxy will do that the kernel doesn't? > [Roman, previous email] > Exact. Caching ftp really doesn't worth the pain, I think. But > perhaps may be interesting to mangle and -overall- to LOG ftp sessions > (in this way you can take exact control on which ftp commands the > client issued, the files being downloaded, etc). Main purpose is > extensive logging. Duh ... sorry. I missed your reasons at the bottom of your email. I'd recommend you check out the TIS ftp-gw proxy. Maybe someone has hacked it to work transparently by now. I don't know of anything else that can control ftp command sets ... either that or perhaps you could extend the kernel stuff :) --C - : send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.kernel.org
