thanks for your prompt reply. I do agree with you but when reading the manual concerning binat it says:
---- ..Connections from the Internet to the external address will be translated to the internal address.. ---- which means that ANY connection from the Internet will be translated/redirected to this specific server which actually discharges my whole LAN? To be more specific, I first tried the following configuration: ---------- binat on $ext_if from $cam1 to any -> $ext_if nat on $ext_if from $int_if:network to any -> $ext_if ---------- and couldn't ssh my server any more cause my connection was automatically redirected to port 22 of the internal machine where no sshd was running!!!!!!! I think that I misunderstood binat but couldn't find any detailed docs or examples how to use it. If you have time to provide me some directions to this? Thanks for your support George On Saturday 14 May 2005 23:46, Abraham Al-Saleh wrote: > From man (5) pf.conf: > > "binat > A binat rule specifies a bidirectional mapping between an external > IP netblock and an internal IP netblock." > > read the pf.conf manual page for more information. > > On 5/14/05, GV <[EMAIL PROTECTED]> wrote: > > Hi, > > > > I have a situation where an internal (located in a LAN and behind a > > OpenBSD > > firewall/NAT) has to be fully exposed to the Internet! What's the best > > way to > > acieve that? > > > > Thanks > > > > George > > -- > Abe Al-Saleh > And then came the Apocolypse. It actually wasn't that > bad, everyone got the day off and there were barbeques > all around.
