Date: Wed, 14 May 2025 11:07:49 +0300 From: "Andrey V. Elsukov" <bu7cher@yandex.ru> To: Ronald Klop <ronald-lists@klop.ws>, freebsd-net@freebsd.org Subject: Re: ipfw port forwarding ipv6 to localhost? Message-ID: <cc0211aa-f8e5-4473-aacc-17d2ce69eb8e@yandex.ru> In-Reply-To: <1895453271.6640.1747141792650@localhost> References: <1895453271.6640.1747141792650@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
On 13.05.2025 16:09, Ronald Klop wrote: > Quick question. I have Jenkins running on port 8443 as it is running as > an unprivileged user. > To keep the URLs sane I do this in IPFW: > > add nat 1 ipv4 from any to any via epair8b > nat 1 config if epair8b log redirect_port tcp 127.0.0.1:8443 443 > > Which works fine for years already. > > Now I am configuring more and more IPv6 in my network. > Playing around by using an ipv6 address in that config gives errors and > the man page gives me the idea that nat is ipv4 only. > # ipfw add nat 2 ipv6 from any to any via epair8b > # ipfw nat 2 config if epair8b log redirect_port tcp ::1,8443 443 > ipfw: unknown host > > Can I do a similar ipfw action for ipv6? Hi, it is not clear what network topology do you have, but it is probably possible just use ipfw fwd. I.e. something like that: ipfw add fwd ::1,8443 ip6 from any to any 443 proto tcp via epair8b keep-state -- WBR, Andrey V. Elsukov
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?cc0211aa-f8e5-4473-aacc-17d2ce69eb8e>