Hi, Thanks for your reply and advice.
My problem is that I the remote operator may decide to block SSH access to the bridge. But I know he will not block SMTP access, because the bridge is running spamd. The bridge has to sk interfaces, the external one having a valid IP address and the internal one IP-less. In fact, I sort of borrowed the ruleset from the spamd PF config. Only I put the rdr rule for SSH before the rdr rule for spamd. My idea was: whenever a connection from an specific IP address, $myip, comes in on port SMTP, redirect it to the SSH server via the loopback interface. But it seems that I need to do more than just redirect the traffic to port SSH and route it through the loopback interface. Any help is appreciated. Regards, Jose.
