Date: Tue, 24 Jan 2023 13:22:57 +0000 From: bugzilla-noreply@freebsd.org To: pf@FreeBSD.org Subject: [Bug 268717] [pf] rdr rules don't work for traffic originating at localhost Message-ID: <bug-268717-16861-YV6KGZW1kB@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-268717-16861@https.bugs.freebsd.org/bugzilla/> References: <bug-268717-16861@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D268717 --- Comment #14 from dfr@rabson.org --- For my use-case, I need to be able to change both destination address and p= ort and currently the nat rule only allows changing the address. Also, I'm not = sure that nat will work here since it re-writes the source address and I need to change the destination address. As I understand the current situation with rdr, for new local connections, a PF_IN event is triggered when the packet leaves the local network stack and this matches the rdr rule, re-writing destination address and port and sett= ing a state to match the reply. Unfortunately for reply packets no corresponding PF_OUT event is triggered when the packet is delivered to the local network stack so the reverse re-write does not happen. This is why my suggested cha= nge works since it simulates the PF_OUT event for packets which will be process= ed locally. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-268717-16861-YV6KGZW1kB>