I have a box doing IPFW and NAT between an external network
of 126.96.36.199/26 and internal of 172.16/16. It also supports
transparent Web proxying. I have the following two lines in
the IPFW config:
allow ip from any to 188.8.131.52/26 out
fwd 184.108.40.206 tcp from 172.16.0.0/16 to any 80 out
I set up a new Web server on the external network
and tried to connect to its port 80 from inside,
and got a failure back from the proxy (which had
a mistake in its DNS configuration).
I would have thought that the first of the two rules
would have caused the proxy to be bypassed completely,
so how come I get a response from it?