[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Nat and Packet rules

To: tech@openbsd.org
Subject: Nat and Packet rules
From: Dirk-Willem van Gulik <dirkx@webweaving.org>
Date: Fri, 23 Aug 2002 17:51:39 +0200 (CEST)

Is it correct/intentional that I can write:

	# VoIP
	pass in on $ext_if proto { udp, udp } \
	        from any \
        	to any port { 5060, 7999 >< 8008,  8765 >< 8768 } \
	        keep state

But NOT

	rdr on sis1 \
        	proto { udp, tcp } \
	        from any to 10.123.123.2 \
        	port { 5060, 7999 >< 8008, 8765 >< 8768 } \
	        -> 10.11.0.103

and that the latter needs to be written out for each port individually.
>From the pf.conf man page I kind of thoughd it suggested that the second
is fine.

DW

Follow-Ups:
- Re: Nat and Packet rules
  - From: Han <han@mijncomputer.nl>

Prev by Date: Re: Openssl keys and isakmpd
Next by Date: Re: Nat and Packet rules
Prev by thread: Re: Openssl keys and isakmpd
Next by thread: Re: Nat and Packet rules
Index(es):
- Date
- Thread