[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Problems with tables in redirect-statements (bug??)



Hi folks,
I have problems with tables that I use in rdr-statements (3.6-Release). I
want that IPs from a table are redirected to my webserver. The problem is,
that the redirect is only working when I use the IPs through lists or
directly.
My pf.conf:
------------------------------------
# more /etc/pf.conf | grep -v '#'
ext_if="hme0"
int_if="xl0"
good_ports="{ 443 , 22 , 80 , 53 }"
test_ip="{192.168.23.100, 192.168.23.101}"
table <authenticated-users> persist
set loginterface $ext_if
scrub on $ext_if random-id reassemble tcp
nat on $ext_if from $int_if:network to any -> ($ext_if)
rdr pass on $int_if proto tcp from <authenticated-users> to any port { 80,
443 } -> ($int_if) port 443
pass on $ext_if
pass on $int_if
pass quick on lo0 all
antispoof quick for lo0
----------------------------------
This will not work, when I use:
rdr pass on $int_if proto tcp from $test_ip to any port { 80, 443 } ->
($int_if) port 443
The redirect is working. And yes, the Ips are in the table:
#pfctl -t authenticated-users -T show
    192.168.23.100
    192.168.23.101
Is this a known bug?
Greets,
Jonathan