Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 13 Nov 2006 21:00:34 -0500
From:      "fulan Peng" <fulanpeng@gmail.com>
To:        freebsd-current@freebsd.org
Subject:   Please help with ipfw to redirect port 443 to 8892!
Message-ID:  <bf0f1bc90611131800xdd03bd7v54bbe132104122bc@mail.gmail.com>

next in thread | raw e-mail | index | archive | help
Hi,
I have recompiled the CURRENT and 6.1 kernel and added IPFIREWALL. All
I want to do is to redirect incoming 443 request to 8892 which is
listening and I have tested out https://breakevilaxis.org:8892
working.
I added one line in the /etc/rc.firewall file with
ipfw add 400 fwd 66.29.75.29,443 tcp from any to any 8892 in via "rl0"
keep-state

breakevilaxis# ipfw -t list
00100 Mon Nov 13 16:45:36 2006 allow ip from any to any via lo0
00200                         deny ip from any to 127.0.0.0/8
00300                         deny ip from 127.0.0.0/8 to any
00400                         fwd 66.29.75.20,443 tcp from any to any
dst-port 8892 in via rl0 keep-state
65000 Mon Nov 13 16:48:02 2006 allow ip from any to any
65535                         deny ip from any to any

Now when I type https://66.29.75.20, it won't redirect to port 8892.
Please help me to redirect port 443 to 8892. Seems FreeBSD does not
allow any one to use port below 1024 except root but all of the port
applications configured to run as non-root users such www. I checked
pf. It is even complicated than ipfw. It needs compiling the kernel
with some file system. When I type pf -e, it says /dev/pf file or
directory not exists. So I have to give up pf. In CURRENT, there is a
port of PAM, but there is no PAM in 6.1. I have got PAM working in
CURRENT to redirect port 80 to port 8080.



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bf0f1bc90611131800xdd03bd7v54bbe132104122bc>