Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 13 May 2025 15:09:52 +0200 (CEST)
From:      Ronald Klop <ronald-lists@klop.ws>
To:        freebsd-net@freebsd.org
Subject:   ipfw port forwarding ipv6 to localhost?
Message-ID:  <1895453271.6640.1747141792650@localhost>
next in thread | raw e-mail | index | archive | help 

[-- Attachment #1 --]
Hi,

Quick question. I have Jenkins running on port 8443 as it is running as an unprivileged user.
To keep the URLs sane I do this in IPFW:

add nat 1 ipv4 from any to any via epair8b
nat 1 config if epair8b log redirect_port tcp 127.0.0.1:8443 443

Which works fine for years already.

Now I am configuring more and more IPv6 in my network.
Playing around by using an ipv6 address in that config gives errors and the man page gives me the idea that nat is ipv4 only.
# ipfw add nat 2 ipv6 from any to any via epair8b
# ipfw nat 2 config if epair8b log redirect_port tcp ::1,8443 443
ipfw: unknown host

Can I do a similar ipfw action for ipv6?

NB: I'm aware that I can install a simple proxy in between to do this on L7. But that is my plan B.

Regards,
Ronald.
 
[-- Attachment #2 --]
<html><head></head><body>Hi,<br>
<br>
Quick question. I have Jenkins running on port 8443 as it is running as an unprivileged user.<br>
To keep the URLs sane I do this in IPFW:<br>
<br>
add nat 1 ipv4 from any to any via epair8b<br>
nat 1 config if epair8b log redirect_port tcp 127.0.0.1:8443 443<br>
<br>
Which works fine for years already.<br>
<br>
Now I am configuring more and more IPv6 in my network.<br>
Playing around by using an ipv6 address in that config gives errors and the man page gives me the idea that nat is ipv4 only.<br>
# ipfw add nat 2 ipv6 from any to any via epair8b<br>
# ipfw nat 2 config if epair8b log redirect_port tcp ::1,8443 443<br>
ipfw: unknown host<br>
<br>
Can I do a similar ipfw action for ipv6?<br>
<br>
NB: I'm aware that I can install a simple proxy in between to do this on L7. But that is my plan B.<br>
<br>
Regards,<br>
Ronald.<br>
&nbsp;</body></html>

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1895453271.6640.1747141792650>