pf rdr (redirect) syntax solved
artemrts at ukr.net
Thu Dec 1 13:16:02 UTC 2011
--- Original message ---
From: "Damien Fleuriot" <ml at my.gd>
To: "Mark Moellering" <mark at msen.com>
Date: 30 November 2011, 21:11:19
Subject: Re: pf rdr (redirect) syntax solved
> On 30 Nov 2011, at 17:49, Mark Moellering <mark at msen.com> wrote:
> > My apologies for posting an answer without a question but this is something I want searchable in the future.
> > To use redirection ( rdr ) in pf, you MUST specify an ip address or interface.
> > For example, if you want to force external traffic coming in on port 80 to port 443 and write this;
> > rdr on $interface inet proto tcp from ! $internal_addresses to $interface port 80 -> port 443
> > it FAILS! The PROPER syntax is;
> > rdr on $interface inet proto tcp from ! $internal_addresses to $interface port 80 -> $interface port 443
> > I hope this helps someone...
> > Mark Moellering
> Do not take this personally but I find it exceedingly disturbing that you should use the ml as a documentation storage space.
> You really should store this kind of information internally, such as a comment in your pf.conf and/or a wiki.
I think this is purely your opinion. In many cases such short how-to is very useful, e.g. this rdr's example has helped me in my situation. Thanks, Mark!
More information about the freebsd-questions