From owner-freebsd-pf@FreeBSD.ORG Wed Jun 30 16:38:33 2010 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 05D6C106566C for ; Wed, 30 Jun 2010 16:38:33 +0000 (UTC) (envelope-from artemrts@ukr.net) Received: from ffe9.ukr.net (ffe9.ukr.net [195.214.192.28]) by mx1.freebsd.org (Postfix) with ESMTP id 928FD8FC1B for ; Wed, 30 Jun 2010 16:38:32 +0000 (UTC) Received: from mail by ffe9.ukr.net with local ID 1OU0Iv-000JKp-95 ; Wed, 30 Jun 2010 19:38:29 +0300 MIME-Version: 1.0 To: "Luiz Gustavo S. Costa" From: "Vitaliy Vladimirovich" X-Life: is great, enjoy it! X-Mailer: freemail.ukr.net mPOP 3.6.1-current X-Originating-Ip: [91.145.198.61] In-Reply-To: X-Browser: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.6) Gecko/20100625 Firefox/3.6.6 Message-Id: Date: Wed, 30 Jun 2010 19:38:29 +0300 Content-Type: text/plain; charset="windows-1251" Content-Transfer-Encoding: 8bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-pf@freebsd.org Subject: Re[2]: rdr + reply-to, some solution ? X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 30 Jun 2010 16:38:33 -0000        Hi Luiz!      Can you post here your working final ruleset with rdr + replye-to? Only rdr + reply-to section.   Thank you! PERFECT !!!!! This is it ! (tribute to MJ) worked perfectly, had not really thought about using tag, perfect. thank you (valeu !) goodbye rinetd/redir ! 2010/6/28 Gabriel Fonseca : > 2010/6/28 Luiz Gustavo S. Costa >> >> hi Chris ! how are you? >> >> as it says here in Brazil: "I eat ball" :). >> >> pass in $if_int reply-to ($if_ext2 $gw_ext2) proto tcp from any to >> 192.168.1.100 port 80 >> >> but still, the combination does not work >> >> thanks >> >> >> 2010/6/28 Chris Buechler : >> > On Mon, Jun 28, 2010 at 5:12 PM, Luiz Gustavo S. Costa >> > wrote: >> >> Hi all. >> >> >> >> I know there is a problem in using rdr with the reply-to, I usually >> >> use some software to "rdr", as the rinetd, but it's not a pretty >> >> solution. >> >> >> >> Is there any alternative? >> >> >> >> Below is an example of what I'm talking about. >> >> >> >> # Nat section >> >> rdr on $if_ext2 proto tcp from any to 200.x.x.x port 80 -> >> >> 192.168.1.100 >> >> # Rules section >> >> pass in $if_ext2 reply-to ($if_ext2 $gw_ext2) proto tcp from any to >> >> 200.x.x.x port 80 >> >> >> > >> > That rule won't match traffic from that rdr. The dest has to be the >> > 192.168.1.100 IP. >> > >> >> >> >> -- >> Luiz Gustavo Costa (Powered by BSD) >> *+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+ >> mundoUnix - Consultoria em Software Livre >> http://www.mundounix.com.br >> ICQ: 2890831 / MSN: contato@mundounix.com.br >> Tel: 55 (21) 2642-3799 / 7582-0594 >> Blog: http://www.luizgustavo.pro.br >> _______________________________________________ >> freebsd-pf@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-pf >> To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org" > > > Hi, Luiz "gugaBSD" Gustavo. > I don't exactly what your need, but I'll try help. > > Try this: > rdr on $if_ext2 proto tcp from any to 200.x.x.x port 80 tag LINK2 -> > 192.168.1.100 > pass in quick on $if_ext2 reply-to ( $if_ext2 $gw_ext2  ) tagged LINK2 > > I hope that helps. > > Gabriel "ethX" Fonseca > > > > > -- Luiz Gustavo Costa (Powered by BSD) *+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+ mundoUnix - Consultoria em Software Livre http://www.mundounix.com.br ICQ: 2890831 / MSN: contato@mundounix.com.br Tel: 55 (21) 2642-3799 / 7582-0594 Blog: http://www.luizgustavo.pro.br _______________________________________________ freebsd-pf@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org"