Date: Thu, 15 Sep 2005 13:07:49 +0100 From: Brian Candler <B.Candler@pobox.com> To: Greg Hennessy <Greg.Hennessy@nviz.net> Cc: freebsd-pf@freebsd.org Subject: Re: Using 'rdr' on outbound connections Message-ID: <20050915120749.GA1235@uk.tiscali.com> In-Reply-To: <20050915113918.173F24D@gw2.local.net> References: <20050915111712.GA1110@uk.tiscali.com> <20050915113918.173F24D@gw2.local.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Sep 15, 2005 at 12:39:18PM +0100, Greg Hennessy wrote: > > > rdr pass proto tcp from any to any port 25 -> 127.0.0.1 port > > 25 rdr pass on lo0 proto tcp from any to any port 25 -> > > 127.0.0.1 port 25 rdr pass on fxp0 proto tcp from any to any > > port 25 -> 127.0.0.1 port 25 > > Have you tried rdr on its own combined with an explicit pass rule in your > policy ? I tried 'rdr' by itself originally, yes. There is no extra policy at all in this ruleset; that's my entire /etc/pf.conf. Since filter policy defaults to 'pass', then it shouldn't make any different, should it? I appreciate you making suggestions, but perhaps if you have a spare machine available, you could try replicating the problem? It's different from your squid setup, where traffic originates from another client and passes through your FreeBSD router. As I said before, I've demonstrated to myself that rdr works when the traffic is inbound from another machine. Regards, Brian.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050915120749.GA1235>