From owner-freebsd-pf@FreeBSD.ORG  Mon Jun 28 22:24:28 2010
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
Delivered-To: freebsd-pf@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 9A17C1065670
	for <freebsd-pf@freebsd.org>; Mon, 28 Jun 2010 22:24:28 +0000 (UTC)
	(envelope-from luizgustavo@luizgustavo.pro.br)
Received: from mail-ww0-f54.google.com (mail-ww0-f54.google.com [74.125.82.54])
	by mx1.freebsd.org (Postfix) with ESMTP id 3C8E38FC12
	for <freebsd-pf@freebsd.org>; Mon, 28 Jun 2010 22:24:27 +0000 (UTC)
Received: by wwb28 with SMTP id 28so791185wwb.13
	for <freebsd-pf@freebsd.org>; Mon, 28 Jun 2010 15:24:19 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.216.86.198 with SMTP id w48mr4086338wee.37.1277763859035; Mon, 
	28 Jun 2010 15:24:19 -0700 (PDT)
Received: by 10.216.178.134 with HTTP; Mon, 28 Jun 2010 15:24:18 -0700 (PDT)
In-Reply-To: <AANLkTikwp2exi_fDniASauaPpEGX8FfgahZwRTlDmLUj@mail.gmail.com>
References: <AANLkTimQDT9IOfmNxAJSzGRj3TCmtKNso8hqLXFQebLr@mail.gmail.com>
	<AANLkTikwp2exi_fDniASauaPpEGX8FfgahZwRTlDmLUj@mail.gmail.com>
Date: Mon, 28 Jun 2010 22:24:18 +0000
Message-ID: <AANLkTilsfgvw5MY98y2QxW_D5KuaUVqTPkRDFXKmy_Gl@mail.gmail.com>
From: "Luiz Gustavo S. Costa" <luizgustavo@luizgustavo.pro.br>
To: Chris Buechler <cbuechler@gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
Cc: freebsd-pf@freebsd.org
Subject: Re: rdr + reply-to, some solution ?
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Technical discussion and general questions about packet filter
	\(pf\)" <freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 28 Jun 2010 22:24:28 -0000

hi Chris ! how are you?

as it says here in Brazil: "I eat ball" :).

pass in $if_int reply-to ($if_ext2 $gw_ext2) proto tcp from any to
192.168.1.100 port 80

but still, the combination does not work

thanks


2010/6/28 Chris Buechler <cbuechler@gmail.com>:
> On Mon, Jun 28, 2010 at 5:12 PM, Luiz Gustavo S. Costa
> <luizgustavo@luizgustavo.pro.br> wrote:
>> Hi all.
>>
>> I know there is a problem in using rdr with the reply-to, I usually
>> use some software to "rdr", as the rinetd, but it's not a pretty
>> solution.
>>
>> Is there any alternative?
>>
>> Below is an example of what I'm talking about.
>>
>> # Nat section
>> rdr on $if_ext2 proto tcp from any to 200.x.x.x port 80 -> 192.168.1.100
>> # Rules section
>> pass in $if_ext2 reply-to ($if_ext2 $gw_ext2) proto tcp from any to
>> 200.x.x.x port 80
>>
>
> That rule won't match traffic from that rdr. The dest has to be the
> 192.168.1.100 IP.
>



-- 
Luiz Gustavo Costa (Powered by BSD)
*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+
mundoUnix - Consultoria em Software Livre
http://www.mundounix.com.br
ICQ: 2890831 / MSN: contato@mundounix.com.br
Tel: 55 (21) 2642-3799 / 7582-0594
Blog: http://www.luizgustavo.pro.br