Hi all,
Can anyone tell me what I am doing wrong?
Here are a few lines from my /etc/pf.conf :
$ext_if = "rl0"
$ext_ip = "231.231.231.231"
rdr on $ext_if proto tcp from 123.123.123.123/32 to $ext_ip port 1234 ->
192.168.1.1 port 1234
block in on $ext_if proto tcp all
pass in on $ext_if proto tcp from 123.123.123.123/32 to any port 1234
keep state
These work fine. NAT (not shown here) als works fine and in general I am
very happy with pf. However if I want to tighten the last rule to:
pass in on $ext_if proto tcp from 123.123.123.123/32 to $ext_ip port
1234 keep state
^^^^^^^
...it somehow doesn't work. Is this normal? I mean, people are trying to
connect to MY specific external ip address, not to "any". Then why does
"any" work and "$ext_ip" not? BTW, the rules are loading normally, it's not
that I get any errors, it just doesn't work the way I expected it to.
Greetings,
Matijs
