I have a question regarding ipf and ipnat. I have a firewall with two public IP addresses. One of the IP addresses is for incoming Internet traffic only and the other is for incoming e-mail. I'm not sure why my ISP has done, this, but they have.
In otherwords, all incoming http traffic (port 80) will be going to the address 1.2.3.4 and all incoming smtp traffic (port 25) will be going to 1.2.3.5. The internal address of the firewall is 10.129.10.40/24. The webserver has an internal address of 10.129.10.49 and a default gateway of 10.129.10.40 (the firewall). If I use rdr on an incoming connection, will repsonses exit the network on the same interface they entered the firewall on? Following are the rules I would use. ipnat.rules rdr em1 1.2.3.4/32 port 80 -> 10.129.10.49 port 80 tcp ipf.rules pass in on em1 from any to 1.2.3.4 port = 80 keep state pass out on em1 from 1.2.3.4 port = 80 to any keep state Does this solution make sense, or is there a better way to accomplish the same thing? Thanks for your help. Jay _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"