Date: Sat, 6 Sep 2008 21:41:55 +0200 From: <secucatcher@free.fr> To: "David DeSimone" <fox@verio.net> Cc: freebsd-pf@freebsd.org Subject: Re: bidirectional NAT in PF? Message-ID: <20080906214155.52c6f2e7@desktop> In-Reply-To: <20080906191403.GJ1949@verio.net> References: <1220706618.48c2813ab9cc6@imp.free.fr> <20080906204042.16491860@desktop> <20080906191403.GJ1949@verio.net>
next in thread | previous in thread | raw e-mail | index | archive | help
> Is this true, that PF supports bidirectional NAT? That is, NAT of > both the source and the destination IP in a connection, at the same > time? > > I had attempted this in the past but I could not find a rule syntax > that would accomplish it. Looking at the above, it appears that this > may be possible because PF processes the rulebase twice for forwarded > traffic; once on input, and again on output. If the inbound packet > matched a "rdr" rule, and the outbound matched a "nat" rule, this > would accomplish bidirectional NAT? > > Interesting technique, if it works. "binat" was not working for u ? binat on $ifext from private-ip to any -> public-ip
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080906214155.52c6f2e7>