On Donnerstag 14 Juli 2005 08:24, you wrote: > Have you thought of doing this with transparent proxying instead > of ipfilter? >
That is what I wanted to achieve with my ipnat rdr rules. > BTW, it's news to me that you can't rdr to the same interface. See ipfilter howto, 4.5, last section. I would like to have something like this: rdr bge0 10.0.0.1/32 port 161 -> 127.0.0.1 port 8001 rdr bge0 10.0.0.2/32 port 161 -> 127.0.0.1 port 8002 rdr bge0 10.0.0.3/32 port 161 -> 127.0.0.1 port 8003 and so on ... My problem is that this just simply does not work ... no rewriting takes place. What do I have to change? Maybe the problem ist that I want to have outgoing packets rewritten ... ? > Admittedly I'm using 3.? (old version), but I use rdr this way > all the time. It'd be a real nuisance if this feature was removed. -- Heiko Nardmann (Dipl.-Ing. Technische Informatik) secunet Security Networks AG - Sicherheit in Netzwerken (www.secunet.de), Weidenauer Str. 223-225, D-57076 Siegen Tel. : +49 271 48950-13, Fax : +49 271 48950-50
pgp4gsnyRKffu.pgp
Description: PGP signature
