pf + bridge
Sergey Lyubka
valenok at gmail.com
Mon Apr 11 06:20:43 PDT 2005
Hi.
I am trying to build a transparent filtering box.
Box is running freebsd 5.4, pf and bridge, this is
the setup:
in
|
| em0, 0.0.0.0
-----
| |
| |
| |
-----
|
| em1, 10.0.0.1
Bridge config:
sysctl net.link.ether.bridge.enable=1
sysctl net.link.ether.bridge_ipf=1
sysctl net.link.ether.bridge.config=em0,em1
PF config:
int="em0"
ext="em1"
rdr on $int inet proto tcp from any to any port 80 -> 127.0.0.1 port 8080
So, pf redirects http traffic to a web proxy. The IP address on em1 is
needed so the proxy can do web requests by itself.
The problem with that setup is that I can see no packets redirected.
Any points?
Thanks,
Sergey
More information about the freebsd-pf
mailing list