So you can't use 'tagged' here. I think from the pf point of
view it wouldn't make too much sense anyway, because rdr happens
before anything else -- so there actually can't exist any rule
which would have already tagged the packet.
In a bridge a packet can be tagged before it reaches pf,
* Danilo Kempf [EMAIL PROTECTED] [2004-10-12 10:36]:
Andy Wettstein wrote:
I think I rule like this would work:
rdr on $wireless_if proto tcp tagged ! WIFI from any to any \
port www - ($wireless_if)
but I get a syntax error when I try to load the ruleset.
So I wonder if I
On Tue, Oct 12, 2004 at 11:31:40AM +0200, Henning Brauer wrote:
sure it can, from bridge or another interface.
I basically just forgot tagged on rdr/nat rules. maybe i find a
little time after that other pf diff is out of my tree... should be
trivial to add.
sounds great. In the
hello
I am trying to set up a wireless firewall where users must authenticate
before they are able to use it.
What I would like to do is use a bridge and tag MAC addresses with
brconfig and then have pf redirect connections to a web authenticator
if they haven't been registered or just allow
Andy Wettstein wrote:
I think I rule like this would work:
rdr on $wireless_if proto tcp tagged ! WIFI from any to any \
port www - ($wireless_if)
but I get a syntax error when I try to load the ruleset.
So I wonder if I can use the tagged keyword with rdr, and if I can't
what are