On 05/12/2008 12:07:45 PM, Christer Solskogen wrote:
I have been trying to get some of my online games to work. Normally
on a NAT-ed network rdr's are needed to get the port forwarding to
work.
My pf.conf is:
funshine = "192.168.0.12"
rdr pass log on $ext_if proto { tcp, udp } from any to $ext_if port {
-> $funshine
binat on $ext_if from $funshine to any -> 85.200.10.151
You report what does work, but not what didn't work so it's difficult
to say why it didn't work.
It could be the order in which the rules are evaluated confused you:
Evaluation order of the translation rules is dependent on the
type of the
translation rules and of the direction of a packet. binat rules
are al-
ways evaluated first. Then either the rdr rules are evaluated on
an in-
bound packet or the nat rules on an outbound packet. Rules of
the same
type are evaluated in the same order in which they appear in the
ruleset.
The first matching rule decides what action is taken.
I.e. the rdr rule in your ruleset does nothing. On the other hand,
both endpoints probably need to be able to initiate traffic, so binat
is probably what you want.
Karl <[EMAIL PROTECTED]>
Free Software: "You don't pay back, you pay forward."
-- Robert A. Heinlein
