Yes, these 2 hosts are on the same subnet. The ultimate goal here is to have a trap receiver run as a non-privileged account. Unfortunately the device we are trying to receive traps from can not send them on anything other than port 162.
Hence, the idea of using IPF to redirect the traps to another server on a non-privileged port. As for the logic of having something run as root, grab a trap, and redirect so something else can receive it as non-root...clients decision, however interesting it is... -----Original Message----- From: Jim Sandoz [mailto:[EMAIL PROTECTED] Sent: Thursday, June 29, 2006 11:10 AM To: Mike Epplin Cc: [email protected] Subject: Re: Question about using nat to redirect SNMP traps Mike Epplin wrote: > I am trying to get any snmp traps sent to 10.170.24.126 (which is where the > IP Filter is loaded) redirected to 10.170.24.127 port 7900. are these two hosts on the same subnet? > IPF loads fine, but the traffic won't pass from 126 to 127. Does anyone > have any suggestions on what I might be doing wrong here? ipf will not "bounce" connections, ie. coming in and going out on the same interface. jim
