Date: Thu, 10 Jan 2008 21:37:49 -0500 From: "Rodrique Heron" <swygue@rodhouse.org> To: "Michal Varga" <varga.michal@gmail.com> Cc: freebsd-pf@freebsd.org Subject: Re: Forwarding another host Message-ID: <1a5f1a2d0801101837r338b5453m7a8f673e3b03833e@mail.gmail.com> In-Reply-To: <1200009515.36543.27.camel@xenon> References: <4784F7E3.3060508@rodhouse.org> <1199919114.59461.10.camel@xenon> <1a5f1a2d0801100501j664f6b81sebe866b986a05500@mail.gmail.com> <1199977668.36543.12.camel@xenon> <1a5f1a2d0801100910r1316d24dibb2b12720dfda207@mail.gmail.com> <1200009515.36543.27.camel@xenon>
next in thread | previous in thread | raw e-mail | index | archive | help
On 1/10/08, Michal Varga <varga.michal@gmail.com> wrote:
>
>
> On Thu, 2008-01-10 at 12:10 -0500, Rodrique Heron wrote:
>
>
> > Thanks
> >
> > FreeBSD syntax for log all is "log-all", I have no block rules. I am
> > passing everything with.
> >
> > pass in quick all
> > pass out qick all
> >
> ah, I think this may be another problem. Syntax for log (all) really
> *was* log-all, in PF 3.7, that is approximately the version used in
> FreeBSD 6.x. I somehow forgot about this from your first mail. As
> FreeBSD 7 incporporates PF 3.9, things behave a little differently here
> and there. anyway, can you show me the exact PF config you are using
> now, one that you think should work and doesn't?
> >
> >
> >
Sorry for the duplicate, I forgot to CC the list.
Both host are in the same broadcast domain,connected to the same switch.
INTERNET
|
|
PIX Firewall
|
|
SWITCH*---*HOSTA 192.168.2.14
*
|
|
*
HOSTB 192.168.2.27
### /etc/pf.conf
ext_if = "em0"
int_if = "lo0"
host_ip = " 192.168.2.14"
jail_ip = "192.168.2.18"
external_host = "192.168.2.27"
rdr on $ext_if proto tcp from any to $host_ip port 22 -> $external_host port
22
rdr on $ext_if proto tcp from any to $host_ip port 26 -> $jail_ip port 22
pass in quick all
pass out quick all
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1a5f1a2d0801101837r338b5453m7a8f673e3b03833e>