I completely forgot about the fact binat is evaluated first. I do remember reading that it just didn't click since I was focused on the syntax issue. I've got some hints and stuff to check into. One of them them mentioned running spamd from the mail server instead of the firewall just to make life easier.
Thank you for your time and help! Also, thanks to everyone else who replied off the list! Shane Karl O. Pinc wrote: > > On 11/19/2007 11:05:02 PM, Shane Harbour wrote: > >> ##### spamd ##### >> rdr on $ext_if inet proto tcp from <whitelist> to $mail_svcs port smtp >> -> $mail_svcs port smtp > > I am using >> binat for my mail server and $mail_svcs contains my server IPs. >> >> I'm using 4.2-stable. Any help/info/pointers are very much >> appreciated. > > This has nothing to do with syntax, and I'm unclear exactly > what you're doing with binat, but caution is called for > using both binat and rdr. binat is done before rdr > which means that if you do both the rdr is effectively ignored, > regardless of the order of the statements in pf.conf. > Use nat instead of binat and do inbound and outbound > separately. > > > Karl <[EMAIL PROTECTED]> > Free Software: "You don't pay back, you pay forward." > -- Robert A. Heinlein
