On Thu, Dec 26, 2002 at 01:30:03PM -0800, Bryan Irvine wrote: > pass in on rl0 proto tcp from any to rl0 port > 49151 keep state > > # pfctl -N /etc/nat.conf > /etc/nat.conf:5: filter rule not permitted in nat mode > pfctl: syntax error in file: nat rules not loaded
Well, filter rules (like the pass rule you quote) go into /etc/pf.conf, and nat rules (nat, binat, rdr) go into /etc/nat.conf. Then you load the filter rules with pfctl -f /etc/pf.conf and the nat rules with pfctl -N -f /etc/nat.conf. Daniel
