pf divert-to address family
I want something like this rule: pass in on bge0 proto tcp from any os OpenBSD to (bge0) port 222 divert-to localhost port ssh pfctl tells me: $ sudo pfctl -f /etc/pf.conf /etc/pf.conf:15: address family mismatch for divert pfctl: Syntax error in config file: pf rules not loaded ? What gives? I figure, oh, maybe there's some ipv6 bullshit going on here. So I change localhost to 127.0.0.1, change bge0 to bge0:0, no, it's still not happy. rdr-to of course works exactly as I want to it. But I've been told I'm supposed to use divert-to and not rdr-to.
Re: pf divert-to address family
Ted Unangst t...@tedunangst.com writes: I want something like this rule: pass in on bge0 proto tcp from any os OpenBSD to (bge0) port 222 divert-to localhost port ssh I'd say pass in on bge0 _inet_ proto tcp from any os OpenBSD to (bge0) port 222 \ divert-to localhost port ssh Regards, -- Jérémie Courrèges-Anglas GPG fingerprint: 61DB D9A0 00A4 67CF 2A90 8961 6191 8FBF 06A1 1494
Re: pf divert-to address family
On Fri, Sep 14, 2012 at 09:41, Jérémie Courrèges-Anglas wrote: Ted Unangst t...@tedunangst.com writes: I want something like this rule: pass in on bge0 proto tcp from any os OpenBSD to (bge0) port 222 divert-to localhost port ssh I'd say pass in on bge0 _inet_ proto tcp from any os OpenBSD to (bge0) port 222 \ divert-to localhost port ssh Ah, nice, thank you.
