Re: rdr over ip alias

[Daniel Hartmeier]

On Tue, Jul 25, 2006 at 01:07:06PM -0400, mnothic wrote:

 I need documentation it approaches incoming traffic in an IP ALIAS and
 port redirected to a private IP and port

Start with the pf.conf(5) man page, as on

  http://www.openbsd.org/cgi-bin/man.cgi?query=pf.conf

There is nothing special about redirecting connections that originally
have an IP alias as the destination address, you just specify that in
the rdr ... to $alias - $new_dest part.

Daniel

Re: rdr over ip alias

[J. Buck Caldwell]

yea but don't work for me on OpenBSD 3.9 with 2 NIC wan and lan

I have NAT on primary IP and rdr ... to $alias_whit_second_public_ip
port 80 - $prv_machine
but the trafict don't work and without alias the same rule work.

work
rdr pass on $ext_if proto tcp from any to $ext_if port 80 - 
$web_server port 80


don't work
rdr pass on $ext_if proto tcp from any to $alias port 80 - 
$web_server port 80


Huh. This works perfectly fine for me on FreeBSD with pf. I've got it on 
a couple of machines, and no problems yet.:


rdr pass on $ext_if proto tcp from any to alias.domain.org - 192.168.17.26

Granted - I'm not using a variable for the alias address, I've got the 
actual hostname in there, and I'm redirecting all traffic, not just port 
80, but it /should/ work the same...