From owner-freebsd-pf@FreeBSD.ORG Wed Jan 9 23:18:46 2008 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 82B8616A419 for ; Wed, 9 Jan 2008 23:18:46 +0000 (UTC) (envelope-from varga.michal@gmail.com) Received: from fg-out-1718.google.com (fg-out-1718.google.com [72.14.220.158]) by mx1.freebsd.org (Postfix) with ESMTP id 198EA13C45B for ; Wed, 9 Jan 2008 23:18:45 +0000 (UTC) (envelope-from varga.michal@gmail.com) Received: by fg-out-1718.google.com with SMTP id 16so456343fgg.35 for ; Wed, 09 Jan 2008 15:18:44 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:subject:from:to:cc:in-reply-to:references:content-type:organization:date:message-id:mime-version:x-mailer:content-transfer-encoding; bh=5iBlb3U+/dqb/hQUVRVqealyY2WyUJrW+oBNH/V1/Hg=; b=Mh4/qONLZr5ZCI3L7+Gs1BmD3lErUnUS0xTdwh3+Wm/x+VWiRSWO98rALMsQkKFoXpS/VVDCEFR1i/Abc4CG3dxhz9ktEV1Ol/yGk75AE7aOfTmED4wj96zkchTDFsdMXgn8skzEH1F1gdDdyi/P5qrJQi2j4fBLmMNGs8Xk71g= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=subject:from:to:cc:in-reply-to:references:content-type:organization:date:message-id:mime-version:x-mailer:content-transfer-encoding; b=SDEC3sP8gDkAJ1g8TrqeGvcOMc5ILqApSyD4GS20/EhYkGnh9CmZ4i/1HYzDAynC9dxGW5C1SWFjUXuRZFpBPbV+oQb26SkOnziNMa7mdnTyWDgUhpCRVVUsXbvXYJR1cuvd4NKFCcWd/cAOL9Kuk7VfzqQnB/Pm5XVUL5QDyDQ= Received: by 10.86.73.17 with SMTP id v17mr1114853fga.74.1199919116917; Wed, 09 Jan 2008 14:51:56 -0800 (PST) Received: from ?10.0.100.2? ( [82.208.39.180]) by mx.google.com with ESMTPS id 12sm1371195fgg.6.2008.01.09.14.51.55 (version=TLSv1/SSLv3 cipher=RC4-MD5); Wed, 09 Jan 2008 14:51:55 -0800 (PST) From: Michal Varga To: Rodrique Heron In-Reply-To: <4784F7E3.3060508@rodhouse.org> References: <4784F7E3.3060508@rodhouse.org> Content-Type: text/plain Organization: Stonehenge Date: Wed, 09 Jan 2008 23:51:54 +0100 Message-Id: <1199919114.59461.10.camel@xenon> Mime-Version: 1.0 X-Mailer: Evolution 2.12.3 FreeBSD GNOME Team Port Content-Transfer-Encoding: 7bit Cc: freebsd-pf@freebsd.org Subject: Re: Forwarding another host X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Jan 2008 23:18:46 -0000 On Wed, 2008-01-09 at 11:35 -0500, Rodrique Heron wrote: > Good Day- > > I'm running FreeBSD 6.2 and I want to know if forwarding to a external > host is supported by PF. I want to forward all incoming traffic to port > 22 to another host, but it does not work, forwarding to a Jail works > though. Here are my configs: > rdr on $ext_if proto tcp from any to $host_ip port 22 -> $external_host > port 22 This surely works, I've been using it for years (I think everyone does). Maybe your $external_host is blocking incoming traffic, or doesn't have a clean route to reply? m. -- Michal Varga Stonehenge