I'm trying to via passing trhough $ext_if. My $ext_if (rl0) has no ip addres, they share one with a carp device.
On 5/12/07, Stuart Henderson <[EMAIL PROTECTED]> wrote: > > On 2007/05/12 12:15, Alberich de megres wrote: > > what you mean? > > Where are you trying to connect from when you test this? > > The connection needs to pass through $ext_if in order to be > matched by the redirect rules you are using. > > You may need to read > http://www.openbsd.org/faq/pf/rdr.html#reflect > > > > On 5/12/07, Stuart Henderson <[EMAIL PROTECTED]> wrote: > > > > > > On 2007/05/12 11:11, Alberich de megres wrote: > > > > rdr on $ext_if inet proto tcp from any to ($ext_carp_if) port 22 -> > > > > 192.168.0.200 port 22 > > > > rdr on $ext_if inet proto tcp from any to ($ext_carp_if) port 80 -> > > > > 192.168.0.200 port 80 > > > > > > > > pass out all > > > > pass in all > > > > > > > > but http conections and ssh won't be redirected. If i setup httpd in > > > > firewall then i can see firewall apache daemon, but not apache on > > > > 192.168.0.200 > > > > > > you _are_ testing from $ext_if, aren't you..?
