From owner-freebsd-pf@FreeBSD.ORG Sat Jul 4 07:49:36 2009 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D8AD4106564A for ; Sat, 4 Jul 2009 07:49:36 +0000 (UTC) (envelope-from tt-list@simplenet.com) Received: from mta1.scaledsystems.com (mta1.scaledsystems.com [209.132.4.201]) by mx1.freebsd.org (Postfix) with ESMTP id B66A58FC15 for ; Sat, 4 Jul 2009 07:49:36 +0000 (UTC) (envelope-from tt-list@simplenet.com) Received: (qmail 72370 invoked from network); 4 Jul 2009 07:49:36 -0000 Received: from unknown (HELO ?192.168.1.101?) (tt@simplenet.com@76.176.154.181) by mail.ssl.simplenet.com with ESMTPA; 4 Jul 2009 07:49:36 -0000 Message-ID: <4A4F0992.8090906@simplenet.com> Date: Sat, 04 Jul 2009 00:49:38 -0700 From: Tim Traver User-Agent: Thunderbird 2.0.0.22 (Windows/20090605) MIME-Version: 1.0 To: Dimitry Andric References: <4A4D2010.4020908@simplenet.com> <4A4DE199.4010701@andric.com> In-Reply-To: <4A4DE199.4010701@andric.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-pf@freebsd.org Subject: Re: Extremely simple redirect rule doesnt appear to be working X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: tt-list@simplenet.com List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 04 Jul 2009 07:49:37 -0000 Dimitry Andric wrote: > On 2009-07-02 23:01, Tim Traver wrote: > >> In reading up, it appears that the redirect config line should do that, >> and in testing, I have a simple line like this in the pf.conf >> >> rdr pass inet proto tcp from any to 209.131.36.158 port 80 -> [internal >> address here] port 80 >> >> now, I haven't made that internal address be an address on the local box >> yet, cause I'm testing to see how this works... >> >> I can manually telnet to [internal address here] port 80 with no >> problems and get the apache greeting. >> >> Once I turn on and load the pf.conf file (with pfctl -F all -f >> /etc/pf.conf), and I try to telnet to 209.131.36.158 port 80 (generic >> www.yahoo.com), I don't get redirected to the internal address port 80 >> and get the apache greeting that is expected... >> > > Please post your pf.conf, or it will rather difficult to see what is > wrong. > Dmitry, I appreciate your post, but my pf.conf file only consists of the rule that I have stated for the redirect. I have no other filtering going on... Thanks, Tim.