Date: Fri, 19 Oct 2007 01:40:42 -0500 From: David DeSimone <fox@verio.net> To: freebsd-pf@freebsd.org Subject: Re: NAT problem Message-ID: <20071019064041.GA18889@verio.net> In-Reply-To: <c64c15310710181741h78a4c0a0vfe32f3553ccd3915@mail.gmail.com> References: <c64c15310710181741h78a4c0a0vfe32f3553ccd3915@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Nicolas Salvo <nicolas.salvo@gmail.com> wrote: > > nat on $ext_if from $int_net to $proxy_bypass_needed port 80 -> $ext_if port 81 > > This was our best effort but we only changed the source port to 81, > and we need to change the destination port. Use "rdr" command instead of "nat". The documentation talks around and around this without actually saying it, but it is as simple as this: "nat" modifies the source IP / port. "rdr" modifies the destination IP / port. - -- David DeSimone == Network Admin == fox@verio.net "This email message is intended for the use of the person to whom it has been sent, and may contain information that is confidential or legally protected. If you are not the intended recipient or have received this message in error, you are not authorized to copy, dis- tribute, or otherwise use this message or its attachments. Please notify the sender immediately by return e-mail and permanently delete this message and any attachments. Verio, Inc. makes no warranty that this email is error or virus free. Thank you." --Lawyer Bot 6000 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFHGFFpFSrKRjX5eCoRAjwxAJ9EEW/rwqqJzaZ0HszUTbRGmzZv0QCgl+kb HEwbLHv7Stli8/QzMCJetUg= =gDac -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20071019064041.GA18889>