[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: pf.conf again and again ...



Hi!
On Sun, 23 Feb 2003 06:24:50 -0800, Francis Limousy wrote:
> Hi,
> 
> After reading a lot of messages about pf.conf (and openbsd.org FAQ of
> course), I still have a big problem to redirect traffic.
> 
> My network looks like this:
> 
> INTERNET ----- xl0 (GATEWAY) xl1 ----- SUBNET (192.168.0.*)
>             (ExtIf)         (IntIf)    
> 
> 
> # NAT rule to the outside:
> nat on $ExtIf from 192.168.0.0/24 to any -> $ExtIf
That'ok this is for external traffic
> 
> #then redirecting traffic from outside to my server (192.168.0.2):
> 
> rdr on $IntIf inet proto tcp from any to $ExtIf port 80 -> 192.168.0.2
> port 80
> 
hmm, i'm using successfully an other rule:
rdr on $Ext proto tcp from any to any port 80 -> 192.168.0.250 port 80
That's all!
But because I'm blocking traffic actively, i've also got an allow rule
like:
pass in quick on $Ext inet proto tcp from any to any port 80 keep state
Hope this helps you!