Re: pf change destination port for outgoing traffic

Wed, 09 Apr 2008 07:11:56 -0700 

p1 and p2 are always the same.
58453 always to 80
K.
----- Original Message ----- From: "scott" <[EMAIL PROTECTED]> 
To: "Karel Galuska" <[EMAIL PROTECTED]>
Sent: Wednesday, April 09, 2008 2:46 PM
Subject: Re: pf change destination port for outgoing traffic



Are the values of p1 and p2 mapping (p1>p2) always the same?

Like www.google.com:9999 and 9999 is always to be :80.

How many of these 1:1 port mappings are there?

/S
-----Original Message-----
From: Karel Galuska <[EMAIL PROTECTED]>
To: scott <[EMAIL PROTECTED]>
Cc: misc@openbsd.org
Subject: Re: pf change destination port for outgoing traffic
Date: Wed, 9 Apr 2008 12:17:40 +0200
Mailer: Microsoft Outlook Express 6.00.2900.3138
Delivered-To: [EMAIL PROTECTED]
It is not easy to explain. On PCs are special custom based aplications which changes destination port of outcoming traffic and I need put it back to port 
80.
Now I use http proxy, but I wanted remove it and use simly pf. So, you mean 
using proxy is the only way?

Karel
----- Original Message ----- From: "scott" <[EMAIL PROTECTED]> 
To: "Karel Galuska" <[EMAIL PROTECTED]>
Cc: <misc@openbsd.org>
Sent: Wednesday, April 09, 2008 12:01 PM
Subject: Re: pf change destination port for outgoing traffic



As far as I know, pf = no; an http (or ip) proxy = yes.

But, please explain how you expect www.google.com:p2 to work when client
wants www.google.com:p1 (meaning www.google.com:80)?


-----Original Message-----
From: Karel Galuska <[EMAIL PROTECTED]>
To: scott <[EMAIL PROTECTED]>
Cc: misc@openbsd.org
Subject: Re: pf change destination port for outgoing traffic
Date: Wed, 9 Apr 2008 11:46:34 +0200
Mailer: Microsoft Outlook Express 6.00.2900.3138
Delivered-To: [EMAIL PROTECTED]

any public server on the Internet
----- Original Message ----- From: "scott" <[EMAIL PROTECTED]> 
To: "Karel Galuska" <[EMAIL PROTECTED]>
Cc: <misc@openbsd.org>
Sent: Wednesday, April 09, 2008 11:24 AM
Subject: Re: pf change destination port for outgoing traffic



When you say, "...b.b.b.b represents every server the client wants," do
you mean (i) every server from a known set of servers, or do you mean
(ii) any server --public and private-- on the Internet?


-----Original Message-----
From: Karel Galuska <[EMAIL PROTECTED]>
To: misc@openbsd.org
Subject: pf change destination port for outgoing traffic
Date: Wed, 9 Apr 2008 08:23:50 +0200
Mailer: Microsoft Outlook Express 6.00.2900.3138
Delivered-To: [EMAIL PROTECTED]

Hi all,
I use OpenBSD as a firewall with nat function for local network.
For special reason now I need change some destination ports for outgoing 
traffic to every
internet server.

For example when internal PC a.a.a.a wants to connect internet server
b.b.b.b
on port p1 I need transparently redirect connection to port p2 of the
same
internet server b.b.b.b.
But b.b.b.b represents every internet server, which client wants to
connect.

Could you please help me construct the pf rule?

Thanks
Karel

Reply via email to