SV: rdr på en bridge firewall

• Next message: Henrik Kramshøj: "Re: dont worry, be a happy hacker - H�"
• Previous message: Michael Knudsen: "Re: rdr på en bridge firewall"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

Subject: SV: rdr på en bridge firewall
Date: Sun, 4 Feb 2007 11:30:05 +0100
From: "Tue Topholm" <none@tt--device.dk.lh.bsd-dk.dk>
To: <none@bsd-dk--bsd-dk.dk.lh.bsd-dk.dk>

>Quoting Tue Topholm (tt@device.dk):
>> rdr on $int_if proto tcp from any to $min_ip port 80 -> \
>> 66.249.93.104 port 80
>>
>> Men det virker ikke...

>Proev ``rdr pass'' i stedet. Hvis det virker, bliver pakken blokeret af
>en anden regel. Slaa logging til og tcpdump paa pflog0.

Det eneste jeg blokere for er:

block out log on $int_if all

Og der bliver den ikke blokeret ifølge tcpdump

rdr pass log on $int_if proto tcp from any to 212.242.230.111 port 80 ->\
        66.249.93.104 port 80

Den viser sig heller ikke, når jeg kører tcpdump

Det burde ville have noget med at den står før block out log on $int_if all, men det skal den jo...

/Tue

-- 
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.5.432 / Virus Database: 268.17.24/668 - Release Date: 04-02-2007 01:30
 

• Next message: Henrik Kramshøj: "Re: dont worry, be a happy hacker - H�"
• Previous message: Michael Knudsen: "Re: rdr på en bridge firewall"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b30 : Wed 28 Feb 2007 - 23:00:02 CET