From owner-freebsd-pf@FreeBSD.ORG Thu Jan 10 17:53:19 2008 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E65B716A417 for ; Thu, 10 Jan 2008 17:53:19 +0000 (UTC) (envelope-from fox@verio.net) Received: from dfw-smtpout2.email.verio.net (dfw-smtpout2.email.verio.net [129.250.36.42]) by mx1.freebsd.org (Postfix) with ESMTP id B653F13C461 for ; Thu, 10 Jan 2008 17:53:19 +0000 (UTC) (envelope-from fox@verio.net) Received: from [129.250.36.64] (helo=dfw-mmp4.email.verio.net) by dfw-smtpout2.email.verio.net with esmtp id 1JD1ah-0006KY-1P for freebsd-pf@freebsd.org; Thu, 10 Jan 2008 17:53:19 +0000 Received: from [129.250.40.241] (helo=limbo.int.dllstx01.us.it.verio.net) by dfw-mmp4.email.verio.net with esmtp id 1JD1ag-0003WX-UM for freebsd-pf@freebsd.org; Thu, 10 Jan 2008 17:53:18 +0000 Received: by limbo.int.dllstx01.us.it.verio.net (Postfix, from userid 1000) id DFDD08E296; Thu, 10 Jan 2008 11:53:17 -0600 (CST) Date: Thu, 10 Jan 2008 11:53:17 -0600 From: David DeSimone To: freebsd-pf@freebsd.org Message-ID: <20080110175317.GC18918@verio.net> Mail-Followup-To: freebsd-pf@freebsd.org References: <4784F7E3.3060508@rodhouse.org> <20080110001152.GI17784@verio.net> <1a5f1a2d0801100459s242813a8kc8d3fb8bf209d19@mail.gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii; x-action=pgp-signed Content-Disposition: inline In-Reply-To: <1a5f1a2d0801100459s242813a8kc8d3fb8bf209d19@mail.gmail.com> Precedence: bulk User-Agent: Mutt/1.5.9i Subject: Re: Forwarding another host X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 10 Jan 2008 17:53:20 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Rodrique Heron wrote: > > I have a immediate need to relocate my Web server from the DMZ to > inside the network. When you originally described this problem you stated that you wanted to forward incoming traffic to an "external host". To me, that means a host not located anywhere on your internal network. The discussion I gave related to that scenario. Now it appears you are describing a problem that is completely different (and that PF should be able to handle without any trouble). Perhaps you should more accurately diagram the current network layout and your desired layout so that we can tell you whether it will work. - -- David DeSimone == Network Admin == fox@verio.net "This email message is intended for the use of the person to whom it has been sent, and may contain information that is confidential or legally protected. If you are not the intended recipient or have received this message in error, you are not authorized to copy, dis- tribute, or otherwise use this message or its attachments. Please notify the sender immediately by return e-mail and permanently delete this message and any attachments. Verio, Inc. makes no warranty that this email is error or virus free. Thank you." --Lawyer Bot 6000 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFHhluNFSrKRjX5eCoRAoSrAKCKEjO0wcxfkP37klqDdfyDBClbXQCfc92H +6PCZR+LZkWeaNQM6qrZ8rI= =ShYC -----END PGP SIGNATURE-----