On Mon, Aug 29, 2022 at 06:36:26PM +, tt78347 wrote:
> ipfw -q nat 1 config if $extif unreg_only reset \
> redirect_port udp 192.168.21.4:500 500 \
> redirect_port udp 192.168.21.4:4500 4500
> $add 450 nat 1 udp from any to any 500,4500 in via $extif
> $add 451 nat 1 udp from any to any 50
> Only a quick look ...
>
> There is no guarantee, that the ports of the UDP packets are not modified by
> libalias (NAT is designed to do exactly this modification). So some of the
> matches seems to be a bit optimistic,
>
> > - This system has net.inet.ip.fw.one_pass=0
>
>
> man ipfw
>
