Ashwani said: > I am not sure I understand - so you are trying to connect to > IP-of-ce0:1/port-3891 and you see that packets are swallowed?
Yes, that is correct. > I have personally never redirected traffic on a physical interface to > a loopback interface so I am not sure if it works, but that might be > causing this issue. Redirects to loopback work just fine. If we set the rule up for the physical interface it works fine. It is the virtual interface I'm having trouble with. > Does your LDAP server only listen on the loopback IP? If you can make > your LDAP server listen on the logical IP address (of ce0:1) then the > following rule should work without affecting any other traffic: > > rdr ce0 from any to any port = 3891 -> <IP of ce0:1> port 389 tcp The LDAP server listens on all interfaces. I've tried your suggestion, it appears to be behave the same way. Terry
