From owner-freebsd-current@FreeBSD.ORG Thu Dec 1 10:47:48 2011 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D98FA106566C for ; Thu, 1 Dec 2011 10:47:48 +0000 (UTC) (envelope-from dan@sunsaturn.com) Received: from sunsaturn.com (mail1.sunsaturn.com [IPv6:2001:49f0:4004::2]) by mx1.freebsd.org (Postfix) with ESMTP id A64C98FC0A for ; Thu, 1 Dec 2011 10:47:48 +0000 (UTC) Received: by sunsaturn.com (Postfix, from userid 1001) id 73EC2119C6D; Thu, 1 Dec 2011 04:47:47 -0600 (CST) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=sunsaturn.com; s=gamma; t=1322736467; bh=f0a7G96gcoCF8R817aG4+x6vlSUkTakcFRTqQiQM7oc=; h=Date:From:To:Subject:Message-ID:MIME-Version:Content-Type; b=KoXZ8NANg4CyRJ9BpiXwaqXZUOja+KjZnWt0jJyX4dsz2rr3gFTjZxsd7TW1K6Bd4 cBFqi25ppyl7wWSHHyg4C4OUzuWfLmRCgnfOKl4nCGGNRAB3G8etkldaMu9VHXd3Se MuIZobg06Uitey2OB11mMx6GFUFWCiEirqqFitns= Received: from localhost (localhost [127.0.0.1]) by sunsaturn.com (Postfix) with ESMTP id 6EB61119C62 for ; Thu, 1 Dec 2011 04:47:47 -0600 (CST) Date: Thu, 1 Dec 2011 04:47:47 -0600 (CST) From: Dan The Man To: freebsd-current@freebsd.org Message-ID: User-Agent: Alpine 2.00 (BSF 1167 2008-08-23) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; format=flowed; charset=US-ASCII Subject: pf.conf + IPV6 to IPV4 port rdr X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 01 Dec 2011 10:47:48 -0000 pfctl -v -s nat rdr inet6 proto tcp from any to 2001:49f0:4004::/48 port = 9191 -> ::ffff:67.159.46.238 [ Evaluations: 512 Packets: 3 Bytes: 228 States: 1 ] [ Inserted: uid 0 pid 80940 State Creations: 2 ] I can see here that after i tried on another host to telnet to 2001:49f0:4004::2 9191 , that a state was in fact created for the rdr, but it doesn't appear to be actually forwarding: My rule: rdr inet6 proto tcp to 2001:49f0:4004::/48 port 9191 -> ::ffff:67.159.46.238 Am I missing something here? I have checked on ipv6 forwarding and redirects set to 1, net.inet6.ip6.v6only=0 to allow the mapping... I can even telnet to ::ffff:67.159.46.238 9191 from any host yet it will not forward the 2001:49f0:4004:: addresses, and yes inet6 is allowing the port to pass, so this makes no sense to me.... Dan. -- Dan The Man CTO/ Senior System Administrator Websites, Domains and Everything else http://www.SunSaturn.com Email: Dan@SunSaturn.com