On 13 Nov 2004 17:15:40 -0800, [EMAIL PROTECTED] (Hitete) wrote: >OK, so I didn't express myself correctly. > >I'd like to do 2 things : > >redirect all connections from port 5555 to port 22 on my SMTP server located >in dmz. >redirect all smtp connections to the smtp server in dmz just as it were on >my FW (with public address), (I think that can be done with a binat rule). >
You dont need a binat rule to do that. A rdr + pass will suffice. Get rid of these while you're putting a policy in place. ># >antispoof for $ext_if >antispoof for $wifi_if >antispoof for $dmz_if >I've tested pf without the filtering. Doesn't work either so, the problem is >coming from the RDR rules... Here are some sample rdrs which work just fine in a similar manner. rdr on $Ext proto tcp from !$LAN to ($Ext) port 6881:6889 -> $PC port 6881:6889 rdr on $Ext proto tcp from !$LAN to ($Ext) port $ED2K -> $PC port $ED2K greg -- There's fighting on the left and marching on the right Don't look up in the sky, you're gonna die of fright Here comes the razors edge
