[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: pf.conf again and again ...
On Sun, 23 Feb 2003 06:24:50 -0800, Francis Limousy wrote:
> After reading a lot of messages about pf.conf (and openbsd.org FAQ of
> course), I still have a big problem to redirect traffic.
> My network looks like this:
> INTERNET ----- xl0 (GATEWAY) xl1 ----- SUBNET (192.168.0.*)
> (ExtIf) (IntIf)
> # NAT rule to the outside:
> nat on $ExtIf from 192.168.0.0/24 to any -> $ExtIf
That'ok this is for external traffic
> #then redirecting traffic from outside to my server (192.168.0.2):
> rdr on $IntIf inet proto tcp from any to $ExtIf port 80 -> 192.168.0.2
> port 80
hmm, i'm using successfully an other rule:
rdr on $Ext proto tcp from any to any port 80 -> 192.168.0.250 port 80
But because I'm blocking traffic actively, i've also got an allow rule
pass in quick on $Ext inet proto tcp from any to any port 80 keep state
Hope this helps you!