In some email I received from Steffen Ries, sie wrote: > Hi, > > For a transparent proxy, I want to rdr a set of ports to a single > destination port. > > man -s5 ipnat specifies that the matched port can be in the form portnum > "-" portnum. I have not found any documentation of how the range is > supposed to work and by trial and error I found that the destination > port is an offset to the port I originally specified. > > E.g. when I specify: > > rdr dmfe0 0.0.0.0/0 port 4000-5000 -> 127.0.0.1 port 9000 tcp > > incoming requests on port 4123 are redirected to port 9123, not to port > 9000 like I want.
To do what you want, try this: rdr dmfe0 from any to any port 3999 >< 5001 -> 127.0.0.1 port 9000 tcp Darren
