On Fri, 28 Oct 2005 13:14:16 -0400 Chris Smith <[EMAIL PROTECTED]> wrote:
> rdr pass on $ext_if proto tcp from <remote_admin> to $ext_ad3 port > ldap -> $server_1 port ldap > > ...where $server_1 is on the other side of $int_if, still needs a pass > out rule on $int_if. The "rdr pass" does not extend through to the > destination but only through the interface the rdr rule is applied to. I think this depends on your block rules. If you have a block rule else where, it may not permit the return packets. -- Regards, Ed http://www.usenix.org.uk - http://irc.is-cool.net A TCP/IP stack was the worst feature windows ever got ~ ~ :wq
