rdr + reply-to, some solution ?
Luiz Gustavo S. Costa
luizgustavo at luizgustavo.pro.br
Mon Jun 28 22:24:28 UTC 2010
hi Chris ! how are you?
as it says here in Brazil: "I eat ball" :).
pass in $if_int reply-to ($if_ext2 $gw_ext2) proto tcp from any to
192.168.1.100 port 80
but still, the combination does not work
thanks
2010/6/28 Chris Buechler <cbuechler at gmail.com>:
> On Mon, Jun 28, 2010 at 5:12 PM, Luiz Gustavo S. Costa
> <luizgustavo at luizgustavo.pro.br> wrote:
>> Hi all.
>>
>> I know there is a problem in using rdr with the reply-to, I usually
>> use some software to "rdr", as the rinetd, but it's not a pretty
>> solution.
>>
>> Is there any alternative?
>>
>> Below is an example of what I'm talking about.
>>
>> # Nat section
>> rdr on $if_ext2 proto tcp from any to 200.x.x.x port 80 -> 192.168.1.100
>> # Rules section
>> pass in $if_ext2 reply-to ($if_ext2 $gw_ext2) proto tcp from any to
>> 200.x.x.x port 80
>>
>
> That rule won't match traffic from that rdr. The dest has to be the
> 192.168.1.100 IP.
>
--
Luiz Gustavo Costa (Powered by BSD)
*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+
mundoUnix - Consultoria em Software Livre
http://www.mundounix.com.br
ICQ: 2890831 / MSN: contato at mundounix.com.br
Tel: 55 (21) 2642-3799 / 7582-0594
Blog: http://www.luizgustavo.pro.br
More information about the freebsd-pf
mailing list