Date: Mon, 28 Jun 2010 23:37:09 +0000 From: "Luiz Gustavo S. Costa" <luizgustavo@luizgustavo.pro.br> To: Gabriel Fonseca <gabriel@ethx.com.br> Cc: freebsd-pf@freebsd.org Subject: Re: rdr + reply-to, some solution ? Message-ID: <AANLkTimDyUL8BWaik3XbgixUakz_r_KgO63LwDoNsODK@mail.gmail.com> In-Reply-To: <AANLkTinjNJTLVFl5BfpPRmz1u4lQ9qR7rZhURIbp-wdx@mail.gmail.com> References: <AANLkTimQDT9IOfmNxAJSzGRj3TCmtKNso8hqLXFQebLr@mail.gmail.com> <AANLkTikwp2exi_fDniASauaPpEGX8FfgahZwRTlDmLUj@mail.gmail.com> <AANLkTilsfgvw5MY98y2QxW_D5KuaUVqTPkRDFXKmy_Gl@mail.gmail.com> <AANLkTinjNJTLVFl5BfpPRmz1u4lQ9qR7rZhURIbp-wdx@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
PERFECT !!!!! This is it ! (tribute to MJ) worked perfectly, had not really thought about using tag, perfect. thank you (valeu !) goodbye rinetd/redir ! 2010/6/28 Gabriel Fonseca <gabriel@ethx.com.br>: > 2010/6/28 Luiz Gustavo S. Costa <luizgustavo@luizgustavo.pro.br> >> >> hi Chris ! how are you? >> >> as it says here in Brazil: "I eat ball" :). >> >> pass in $if_int reply-to ($if_ext2 $gw_ext2) proto tcp from any to >> 192.168.1.100 port 80 >> >> but still, the combination does not work >> >> thanks >> >> >> 2010/6/28 Chris Buechler <cbuechler@gmail.com>: >> > On Mon, Jun 28, 2010 at 5:12 PM, Luiz Gustavo S. Costa >> > <luizgustavo@luizgustavo.pro.br> wrote: >> >> Hi all. >> >> >> >> I know there is a problem in using rdr with the reply-to, I usually >> >> use some software to "rdr", as the rinetd, but it's not a pretty >> >> solution. >> >> >> >> Is there any alternative? >> >> >> >> Below is an example of what I'm talking about. >> >> >> >> # Nat section >> >> rdr on $if_ext2 proto tcp from any to 200.x.x.x port 80 -> >> >> 192.168.1.100 >> >> # Rules section >> >> pass in $if_ext2 reply-to ($if_ext2 $gw_ext2) proto tcp from any to >> >> 200.x.x.x port 80 >> >> >> > >> > That rule won't match traffic from that rdr. The dest has to be the >> > 192.168.1.100 IP. >> > >> >> >> >> -- >> Luiz Gustavo Costa (Powered by BSD) >> *+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+ >> mundoUnix - Consultoria em Software Livre >> http://www.mundounix.com.br >> ICQ: 2890831 / MSN: contato@mundounix.com.br >> Tel: 55 (21) 2642-3799 / 7582-0594 >> Blog: http://www.luizgustavo.pro.br >> _______________________________________________ >> freebsd-pf@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-pf >> To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org" > > > Hi, Luiz "gugaBSD" Gustavo. > I don't exactly what your need, but I'll try help. > > Try this: > rdr on $if_ext2 proto tcp from any to 200.x.x.x port 80 tag LINK2 -> > 192.168.1.100 > pass in quick on $if_ext2 reply-to ( $if_ext2 $gw_ext2=A0 ) tagged LINK2 > > I hope that helps. > > Gabriel "ethX" Fonseca > > > > > --=20 Luiz Gustavo Costa (Powered by BSD) *+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+*+ mundoUnix - Consultoria em Software Livre http://www.mundounix.com.br ICQ: 2890831 / MSN: contato@mundounix.com.br Tel: 55 (21) 2642-3799 / 7582-0594 Blog: http://www.luizgustavo.pro.br
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AANLkTimDyUL8BWaik3XbgixUakz_r_KgO63LwDoNsODK>