In the past I have used "delegate" to do port forwarding on our internal servers, forwarding from a server directly connected to the internet, to one that has no direct connection.
I was about to set up delegate to do the same job, when it struck me that I should be able to use ipfilter, via ipnat to redirect the ports. I have had success in the past with ipnat on another server, using "map" to send connections for https, and "rdr" to redirect to a proxy server running on the same machine. I came to set up forwarding and although it says it's working, no packets are being forwarded internally. my ipnat.conf rdr iprb0 any port 143 -> 192.168.0.12 port 143 tcp rdr bge0 any port 143 -> 192.168.0.12 port 143 tcp If I try connecting using "telnet" the client stays "trying", and the "ipnat -l" shows that a connection is established, but if I snoop from 192.168.0.12 there are no packets coming in. I'm sure I'm just missing 1 tiny detail. Can anyone see what I'm missing, or point me in the correct direction? Jon root@fluffy:/etc/ipf# ipnat -vC -f /etc/ipf/ipnat.conf 4 entries flushed from NAT list rdr iprb0,bge0 0.0.0.0/0 port 143 -> 192.168.0.12 port 143 tcp root@oldfluffy:/etc/ipf# ipadm show-if IFNAME STATE CURRENT PERSISTENT lo0 ok -m-v------46 --- bge0 ok bm--------46 -46 iprb0 ok bm--------46 -46 root@oldfluffy:/etc/ipf# ipadm show-addr ADDROBJ TYPE STATE ADDR lo0/v4 static ok 127.0.0.1/8 bge0/v4 static ok 192.168.0.65/24 iprb0/v4 static ok <external address>/28 lo0/v6 static ok ::1/128 root@oldfluffy:/etc/ipf# ipadm show-ifprop bge0 IFNAME PROPERTY PROTO PERM CURRENT PERSISTENT DEFAULT POSSIBLE bge0 arp ipv4 rw on -- on on,off bge0 forwarding ipv4 rw on on off on,off bge0 metric ipv4 rw 0 -- 0 -- bge0 mtu ipv4 rw 1500 -- 1500 68-1500 bge0 exchange_routes ipv4 rw off off on on,off bge0 usesrc ipv4 rw none -- none -- bge0 forwarding ipv6 rw off -- off on,off bge0 metric ipv6 rw 0 -- 0 -- bge0 mtu ipv6 rw 1500 -- 1500 1280-1500 bge0 nud ipv6 rw on -- on on,off bge0 exchange_routes ipv6 rw on -- on on,off bge0 usesrc ipv6 rw none -- none -- root@oldfluffy:/etc/ipf# ipadm show-ifprop iprb0 IFNAME PROPERTY PROTO PERM CURRENT PERSISTENT DEFAULT POSSIBLE iprb0 arp ipv4 rw on -- on on,off iprb0 forwarding ipv4 rw on on off on,off iprb0 metric ipv4 rw 0 -- 0 -- iprb0 mtu ipv4 rw 1500 -- 1500 68-1500 iprb0 exchange_routes ipv4 rw off off on on,off iprb0 usesrc ipv4 rw none -- none -- iprb0 forwarding ipv6 rw off -- off on,off iprb0 metric ipv6 rw 0 -- 0 -- iprb0 mtu ipv6 rw 1500 -- 1500 1280-1500 iprb0 nud ipv6 rw on -- on on,off iprb0 exchange_routes ipv6 rw on -- on on,off iprb0 usesrc ipv6 rw none -- none -- root@oldfluffy:/etc/ipf# routeadm Configuration Current Current Option Configuration System State --------------------------------------------------------------- IPv4 routing disabled disabled IPv6 routing disabled disabled IPv4 forwarding enabled enabled IPv6 forwarding disabled disabled Routing services "route:default ripng:default" Routing daemons: STATE FMRI disabled svc:/network/routing/ripng:default disabled svc:/network/routing/legacy-routing:ipv4 disabled svc:/network/routing/legacy-routing:ipv6 online svc:/network/routing/ndp:default disabled svc:/network/routing/rdisc:default disabled svc:/network/routing/route:default _______________________________________________ OpenIndiana-discuss mailing list OpenIndiana-discuss@openindiana.org http://openindiana.org/mailman/listinfo/openindiana-discuss