Is there any way to use nat / rdr rules to rewrite the destination port on a TCP connection, but leave the destination address untouched?
In rdr rule syntax, something like: rdr on $int_if proto tcp from any to any port 81 -> any port 80 The packet to port 81 would pass through the internal interface and the destination port would be rewritten to port 80. The packet would be routed to the original destination, which is external. Replies would be translated from port 80 to 81 upon passing back through the internal interface. Basically I want internal clients to be able to bypass a transparent squid proxy if they need to test whether a page is stale. Instead of going to www.yahoo.com they could go to www.yahoo.com:81 and bypass the squid cache. -Ryan
