The configuration is used to allow internet access with nat and
incoming connections on a /29 net.
# make ftp service request reach the internet from the NATted LAN
map tx1 192.168.1.0/24 - 1.2.3.6/32 proxy port ftp ftp/tcp
# provide internet access from the NATted LAN
map tx1 192.168.1.0/24 -
The configuration is used to allow internet access with nat and
incoming connections on a /29 net.
# make ftp service request reach the internet from the NATted LAN
map tx1 192.168.1.0/24 - 1.2.3.6/32 proxy port ftp ftp/tcp
# provide internet access from the NATted LAN
map tx1 192.168.1.0/24 -
[EMAIL PROTECTED] writes:
The configuration is used to allow internet access with nat and
incoming connections on a /29 net.
this sounds like a relatively straightforward NATed setup. PF handles
NAT itself, so something along the lines of
[ pf.conf snippet starts ]
ext_if = tx1
int_if =
Thanks Peter and mouss for the replies.
But I'm still puzzled. I read the description of the rdr directive a
number of times and looked at some of the examples but it's still not
clear to me how the above proxy and portmap subcommands translate into
pf's rdr command. It really looks like there is
[EMAIL PROTECTED] writes:
Thanks Peter and mouss for the replies.
Oh, you're welcome,
But I'm still puzzled. I read the description of the rdr directive a
number of times and looked at some of the examples but it's still not
clear to me how the above proxy and portmap subcommands translate
On 3 Apr 2006 22:56:57 -0700, [EMAIL PROTECTED] wrote:
Thanks Peter and mouss for the replies.
But I'm still puzzled. I read the description of the rdr directive a
number of times and looked at some of the examples but it's still not
clear to me how the above proxy and portmap subcommands
On Sunday, Apr 2, 2006, at 00:26 US/Pacific, [EMAIL PROTECTED] wrote:
Is there a document that describes how to translate common IPFilter
constructs to pf? This would be helpful for people migrating (like
me). Specifically, I'm looking for the pf equivalent of IPFilter's
map $ext_if
Hi,
Is there a document that describes how to translate common IPFilter
constructs to pf? This would be helpful for people migrating (like me).
Specifically, I'm looking for the pf equivalent of IPFilter's
map $ext_if 192.168.10.0/24 - 1.2.3.4/32 proxy port 500 ipsec/udp
map $ext_if
[EMAIL PROTECTED] writes:
Is there a document that describes how to translate common IPFilter
constructs to pf?
To my knowledge, no such document exists, at least not any for public
consumption. You're not the first one to suggest that writing a IPF to
PF or IPFW to PF migration guide would
Peter N. M. Hansteen wrote:
Specifically, I'm looking for the pf equivalent of IPFilter's
map $ext_if 192.168.10.0/24 - 1.2.3.4/32 proxy port 500 ipsec/udp
map $ext_if 192.168.10.0/24 - 1.2.3.4/32 proxy port 1 ipsec/tcp
map $ext_if 192.168.10.0/24 - 1.2.3.4/32 portmap tcp/udp 1025:65000
map
[EMAIL PROTECTED] (mouss) writes:
map != rdr.
ipf != pf.
.?
--
Peter N. M. Hansteen, member of the first RFC 1149 implementation team
http://www.blug.linux.no/rfc1149/ http://www.datadok.no/ http://www.nuug.no/
First, we kill all the spammers The Usenet Bard, Twice-forwarded tales
20:11:56
11 matches
Mail list logo