Re: NPF port forward

To: William Ross <williamrossmbsw%gmail.com@localhost>
Subject: Re: NPF port forward
From: Mindaugas Rasiukevicius <rmind%netbsd.org@localhost>
Date: Thu, 17 Jan 2013 23:41:54 +0000

William Ross <williamrossmbsw%gmail.com@localhost> wrote:
> I'm trying to get all packets sent by one specific machine (with IP
> 10.0.0.53) to port 389 on my NetBSD box to be redirected to port 3890
> (also on my NetBSD box).
> My /etc/npf.conf is below and it looks like it should work, but has no
> effect. When I access port 389 from 10.0.0.53 I still get the service
> running on port 389, rather than the one on port 3890. Can anyone suggest
> changes I can make to the config, or am I misusing NAT?
> 
> 
> map pcn0 dynamic 127.0.0.1 port 3890 <- pcn0 pass from 10.0.0.53 port 389

You probably want the following:

$rdr_ip = "pcn0" # or $rdr_ip = inet4(pcn0) on the latest netbsd-6 kernel
map pcn0 dynamic 127.0.0.1 port 3890 <- $rdr_ip port 389

Which NetBSD version are you using?  You need 6.0.1 or newer kernel which
contains a bug fix affecting redirection to loopback.

-- 
Mindaugas

References:
- NPF port forward
  - From: William Ross

Prev by Date: Re: NPF port forward
Next by Date: Re: NPF port forward
Previous by Thread: Re: NPF port forward
Next by Thread: Re: NPF port forward
Indexes:

Home | Main Index | Thread Index | Old Index