pf redirect through socks tunnel?

2014-01-30 Thread Pieter Verberne
Hi there, When I use a client, which is behind a pf firewall, I use this redirect rule: pass in on $ext_if proto {tcp, udp} from any to any port 12345 rdr-to 10.1.2.3 Now I have a client that is connected via a socks5 SSH tunnel to the pf firewall. Can I still have a pf redirect to this client

Re: pf redirect through socks tunnel?

2014-01-30 Thread Giancarlo Razzolini
Em 30-01-2014 15:02, Pieter Verberne escreveu: > Hi there, > > When I use a client, which is behind a pf firewall, I use this redirect > rule: > pass in on $ext_if proto {tcp, udp} from any to any port 12345 rdr-to > 10.1.2.3 > > Now I have a client that is connected via a socks5 SSH tunnel to the

Re: pf redirect through socks tunnel?

2014-01-30 Thread Pieter Verberne
On 2014-01-30 18:02, Pieter Verberne wrote: When I use a client, which is behind a pf firewall, I use this redirect rule: pass in on $ext_if proto {tcp, udp} from any to any port 12345 rdr-to 10.1.2.3 Now I have a client that is connected via a socks5 SSH tunnel to the pf firewall. Can I still

Re: pf redirect through socks tunnel?

2014-01-30 Thread Giancarlo Razzolini
Em 30-01-2014 16:16, Pieter Verberne escreveu: > On 2014-01-30 18:02, Pieter Verberne wrote: >> When I use a client, which is behind a pf firewall, I use this redirect >> rule: >> pass in on $ext_if proto {tcp, udp} from any to any port 12345 rdr-to >> 10.1.2.3 >> >> Now I have a client that is con

Re: pf redirect through socks tunnel?

2014-01-30 Thread Darren Tucker
On Fri, Jan 31, 2014 at 4:02 AM, Pieter Verberne wrote: > Hi there, > > When I use a client, which is behind a pf firewall, I use this redirect > rule: > pass in on $ext_if proto {tcp, udp} from any to any port 12345 rdr-to > 10.1.2.3 > > Now I have a client that is connected via a socks5 SSH tunn

Re: pf redirect through socks tunnel?

2014-02-01 Thread Stuart Henderson
On 2014-01-31, Darren Tucker wrote: > On Fri, Jan 31, 2014 at 4:02 AM, Pieter Verberne > wrote: >> Hi there, >> >> When I use a client, which is behind a pf firewall, I use this redirect >> rule: >> pass in on $ext_if proto {tcp, udp} from any to any port 12345 rdr-to >> 10.1.2.3 >> >> Now I have

Re: pf redirect through socks tunnel?

2014-02-02 Thread Darren Tucker
On Sun, Feb 2, 2014 at 9:33 AM, Stuart Henderson wrote: [...] > Rather than writing a helper running as root, you can change from using > nat redirects (rdr-to) to using divert sockets (divert-to), then the proxy > will receive unmodified packets and can just use getsockname(2) to retrieve > the o