; >>> <[EMAIL PROTECTED]> wrote:
> > > > >>>> Dear Community,
> > > > >>>>
> > > > >>>> I want to move some of our firewalls from Linux/iptables to
> > > > >>>> FreeBSD/pf.
> > >
> > > >>>>
> > > >>>> I want to move some of our firewalls from Linux/iptables to
> > > >>>> FreeBSD/pf.
> > > >>>>
> > > >>>> After reading man pf.conf for a couple of minutes I coul
On Thu, May 8, 2008 at 1:58 PM, Daniel Roethlisberger <[EMAIL PROTECTED]> wrote:
> CZUCZY Gergely <[EMAIL PROTECTED]> 2008-05-08:
>> On Thu, 08 May 2008 11:36:26 +0300 Oleksandr Samoylyk
>> <[EMAIL PROTECTED]> wrote:
>> > >> That iptables rule worked for any destination.
>> > > You cannot rewrite a
CZUCZY Gergely <[EMAIL PROTECTED]> 2008-05-08:
> On Thu, 08 May 2008 11:36:26 +0300 Oleksandr Samoylyk
> <[EMAIL PROTECTED]> wrote:
> > >> That iptables rule worked for any destination.
> > > You cannot rewrite a packet's destination address to _any_
> > > destination.
> > >
> > > It's like you
to
> > >>>> FreeBSD/pf.
> > >>>>
> > >>>> After reading man pf.conf for a couple of minutes I couldn't
> > >>>> find the realization of such iptables rule in pf:
> > >>>>
> > >>>> ip
t; >>> Oleksandr Samoylyk <[EMAIL PROTECTED]> wrote:
> >>>
> >>>> Dear Community,
> >>>>
> >>>> I want to move some of our firewalls from Linux/iptables to FreeBSD/pf.
> >>>>
> >>>> After reading ma
On Thu, 2008-05-08 at 01:04 +0300, Oleksandr Samoylyk wrote:
> Dear Community,
>
> I want to move some of our firewalls from Linux/iptables to FreeBSD/pf.
>
> After reading man pf.conf for a couple of minutes I couldn't find the
> realization of such iptables rule in pf:
On Thu, 08 May 2008 11:36:26 +0300
Oleksandr Samoylyk <[EMAIL PROTECTED]> wrote:
> >> That iptables rule worked for any destination.
> > You cannot rewrite a packet's destination address to _any_ destination.
> >
> > It's like you cannot submit a package at the post office with the
> > destinat
s to FreeBSD/pf.
After reading man pf.conf for a couple of minutes I couldn't find the
realization of such iptables rule in pf:
iptables -t nat -A PREROUTING -i ethX -d ! my.smtp.server -p tcp --dport
25 -j DROP
block in on $interface proto tcp from any to ! my.smtp.server port 25
i
On Thu, May 08, 2008 at 10:16:12AM +0200, Jille wrote:
> iptables -t nat -A PREROUTING -i ethX -p tcp --dport 2525 -j DNAT
> --to-destination :25
>
rdr on $interface proto tcp from any to port 2525 ->
port 25
>>> I meant _any_ destination with 25 port.
>>
s from Linux/iptables to FreeBSD/pf.
After reading man pf.conf for a couple of minutes I couldn't find the
realization of such iptables rule in pf:
iptables -t nat -A PREROUTING -i ethX -d ! my.smtp.server -p tcp --dport
25 -j DROP
block in on $interface proto tcp from any to ! my.sm
to move some of our firewalls from Linux/iptables to FreeBSD/pf.
> >>
> >> After reading man pf.conf for a couple of minutes I couldn't find the
> >> realization of such iptables rule in pf:
> >>
> >> iptables -t nat -A PREROUTING -i ethX -d ! my.smt
ch iptables rule in pf:
iptables -t nat -A PREROUTING -i ethX -d ! my.smtp.server -p tcp --dport
25 -j DROP
block in on $interface proto tcp from any to ! my.smtp.server port 25
iptables -t nat -A PREROUTING -i ethX -p tcp --dport 2525 -j DNAT
--to-destination :25
rdr on $interface proto tcp from
On Thu, 08 May 2008 01:04:54 +0300
Oleksandr Samoylyk <[EMAIL PROTECTED]> wrote:
> Dear Community,
>
> I want to move some of our firewalls from Linux/iptables to FreeBSD/pf.
>
> After reading man pf.conf for a couple of minutes I couldn't find the
> realizatio
Dear Community,
I want to move some of our firewalls from Linux/iptables to FreeBSD/pf.
After reading man pf.conf for a couple of minutes I couldn't find the
realization of such iptables rule in pf:
iptables -t nat -A PREROUTING -i ethX -d ! my.smtp.server -p tcp --dport
25 -j DROP
iptabl
Dear Community,
I want to move some of our firewalls from Linux/iptables to FreeBSD/pf.
After reading man pf.conf for a couple of minutes I couldn't find the
realization of such iptables rule in pf:
iptables -t nat -A PREROUTING -i ethX -d ! my.smtp.server -p tcp --dport
25 -j DROP
ipt
16 matches
Mail list logo
