From owner-freebsd-questions@FreeBSD.ORG Fri Feb 24 21:00:06 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E871716A420 for ; Fri, 24 Feb 2006 21:00:06 +0000 (GMT) (envelope-from eric@schultznet.ca) Received: from dfw002.8inet.com (dfw002.8inet.com [72.232.12.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9A58343D46 for ; Fri, 24 Feb 2006 21:00:06 +0000 (GMT) (envelope-from eric@schultznet.ca) Received: from [206.162.187.199] (helo=[172.22.100.67]) by dfw002.8inet.com with esmtpa (Exim 4.52) id 1FCk2o-0003bz-RO for freebsd-questions@freebsd.org; Fri, 24 Feb 2006 16:00:07 -0500 Message-ID: <43FF73C8.3050809@schultznet.ca> Date: Fri, 24 Feb 2006 15:59:52 -0500 From: Eric Schultz Organization: SchultzNet.ca User-Agent: Thunderbird 1.5 (Windows/20051201) MIME-Version: 1.0 To: freebsd-questions@freebsd.org References: <43FF68DF.4050709@gmx.net> In-Reply-To: <43FF68DF.4050709@gmx.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-PopBeforeSMTPSenders: eric@cameron-schultz.ca,eric@schultznet.ca,schultzn X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - dfw002.8inet.com X-AntiAbuse: Original Domain - freebsd.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - schultznet.ca X-Source: X-Source-Args: X-Source-Dir: Subject: Re: Redirecting Traffic with PF X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Feb 2006 21:00:07 -0000 Frank Staals wrote: > Hey, > Good afternoon... I'm just stabbing in the dark here since I use neither 5-Stable nor PF. > I have an FreeBSD server/firewall running 5-Stable with PF. I want to > redirect all udp traffic on port 27902 from the internet to a computer > in my network. I used this rule but I have some problem with it: > sometimes connections on that port are refused and I can't connect with > other players ( it's for a online game ) : > What do you mean by "sometimes" ??? "sometimes" problems are the worst kind. > rdr on $extif inet proto udp from any port 27902 -> 192.168.2.11 port 27902 > > I think the problem might have something to do with the different > network interfaces since the traffic is comming in on $extif and has to > go to an computer connected to $intif ? And how can I do that ? Can I > change it to: > > rdr on $extif inet proto udp from any port 27902 -> $intif 192.168.2.11 > port 27902 > How are your two interfaces configured and what does your routing table look like? If you do a traceroute to 192.168.2.11 from the firewall when you're having trouble connecting what is the result? -- Headed for the second star to the right and straight on 'til morning... Eric Schultz (aka Storkman) Photos: http://community.webshots.com/user/schultznet Homepage: http://www.schultznet.ca Blog: http://schultznet.blogspot.com/