Hi Darren, I have a similar problem, where I need to make all outgoing IKE traffic to have a source port of 500 (all outgoing port 500 traffic towards a certain IP must also have the same source port). I have tried the following rule that you gave with no luck:
map lnc0 from any to xx.xx.xx.xx/32 port = 500 -> 0/0 port = 500 udp and I always get the following error, which by trial and error have narrowed it down to the second port = 500 (with or without the =): syntax error error at "port", line 1 Is it possible to do this with ipfilter? btw I am using version 4.1.7 on FreeBSD 5.3, so maybe need to use a later version? Regards Rekkie >Subject: Re: Can ipfilter be used to remap TCP ports? > This is not really NAT in the traditional sense. For instance,<br>> there is > no need to retain any connection-oriented history here.<br>> I have tried > various flavors of the rule:<br>> <br>> rdr hme0 1.2.3.4/32 port 540 -> > 1.2.3.4 port 999 tcp<br><br>Try this instead:<br><br>map hme0 from any to > 1.2.3.4/32 port = 540 -> 0/0 port 999 tcp<br><br>Darren<br> _______________________________________________ Join Excite! - http://www.excite.com The most personalized portal on the Web!
