[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: RDR of http does not work

On Sun, Jan 23, 2005 at 12:22:18AM +0100, Jonathan Weiss wrote:
> rdr pass on $int_if proto tcp from !<authenticated-users> to any port { 80,
> 443 } -> ($int_if) port 443
I think that triggers the 'rdr rule without address family' bug fixed
recently in -current[1]. The -stable backport is still pending.
Add 'inet' to the rule (and if you really wanted it to apply to IPv6,
too, add a duplicate for 'inet6'), to work around the problem.
[1] http://archives.neohapsis.com/archives/openbsd/cvs/2005-01/0761.html