On Sat, Mar 17, 2012 at 11:08:14PM +0100, Taylan Ulrich B. wrote: > When I use the line: > pass out on egress inet proto tcp all divert-to 127.0.0.1 port $port > > I get the error: > address specified for outgoing divert > > Is there a reason for this to be forbidden? > How else can I redirect outgoing packets to a local port, with the goal > of transparent proxying? > I guess divert-packet is an option, but that will need some changes in > the proxy software. > > I actually plan on implementing divert ports for Tor, but on the > meanwhile would like to know how to get it working as it is; It uses the > DIOCNATLOOK ioctl on /dev/pf.
Unfortunatelly not supported. It has been once decided that the packet is for remote site and could not be pushed back to the host. Search archives. jirib
