Can someone please tell me how my webserver LEO is able to respond to
requests? Don't I need to specify an outgoing rule (pass out) for
replies?
nat on $EXT from $LAN_clients to any -> $EXT
rdr on $EXT proto tcp from any to ($EXT) port 80 -> $LEO port 80
block in on $EXT all
pass in on $EXT \
inet proto tcp \
from any to $LEO \
port 80
block out on $EXT all
# tcpdump -i tun0 -qtttn port 80
tcpdump: listening on tun0, link-type LOOP
Dec 21 18:31:22.176282 216.147.196.26.35636 > 216.252.85.88.80: tcp 0 (DF)
Dec 21 18:31:22.177017 216.252.85.88.80 > 216.147.196.26.35636: tcp 0 (DF)
Dec 21 18:31:22.226264 216.147.196.26.35636 > 216.252.85.88.80: tcp 0 (DF)
Dec 21 18:31:22.236317 216.147.196.26.35636 > 216.252.85.88.80: tcp 217
(DF)
Dec 21 18:31:22.238060 216.252.85.88.80 > 216.147.196.26.35636: tcp 441
(DF)
Dec 21 18:31:22.238187 216.252.85.88.80 > 216.147.196.26.35636: tcp 0 (DF)
Dec 21 18:31:22.297132 216.147.196.26.35636 > 216.252.85.88.80: tcp 0 (DF)
Dec 21 18:31:22.316222 216.147.196.26.35636 > 216.252.85.88.80: tcp 0 (DF)
Dec 21 18:31:22.316854 216.252.85.88.80 > 216.147.196.26.35636: tcp 0 (DF)
__________________________________________________________
Find your next car at http://autos.yahoo.ca
