Wednesday, August 26, 2009

 

Embrace and extend

There are a bunch of posts on the Internet about how ISA does not do transparent proxying. As I've always used the term, I mean using something like iptables to redirect web traffic to a proxy like squid, ninja style. When done correctly, computers require no extra configuration - the machine performing NAT silently rewrites the destination address to the proxy, the proxy uses request headers to determine the correct host.

Well, it seems ISA does support this. They call NAT clients without any additional proxy configuration SecureNAT clients, and according to this article, the firewall can be configured to redirect outbound web traffic to the IIS proxy. SecureNAT... Because it's magically better than regular NAT with transparent proxying, right?

In happier news, I started on a mago test suite for gcalctool. My branch is here. It's a work in progress but I am pretty happy with the results so far. I'm getting more and more certain about what goes where in the Mago testing paradigm. LDTP is dead simple, although the documentation is really a sore point. I definitely plan to contribute to the docs when I know what I'm doing.

TODO:
  • Readme
  • Math tests
  • Figure out the right place for init in a test suite

This page is powered by Blogger. Isn't yours?