Date: Mon, 11 Apr 2005 13:20:36 +0000 From: Sergey Lyubka <valenok@gmail.com> To: freebsd-pf@freebsd.org Subject: pf + bridge Message-ID: <72c3a957050411062060eea5cc@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
Hi. I am trying to build a transparent filtering box. Box is running freebsd 5.4, pf and bridge, this is the setup: in | | em0, 0.0.0.0 ----- | | | | | | ----- | | em1, 10.0.0.1 Bridge config: sysctl net.link.ether.bridge.enable=1 sysctl net.link.ether.bridge_ipf=1 sysctl net.link.ether.bridge.config=em0,em1 PF config: int="em0" ext="em1" rdr on $int inet proto tcp from any to any port 80 -> 127.0.0.1 port 8080 So, pf redirects http traffic to a web proxy. The IP address on em1 is needed so the proxy can do web requests by itself. The problem with that setup is that I can see no packets redirected. Any points? Thanks, Sergey
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?72c3a957050411062060eea5cc>