View Single Post
  #2   (View Single Post)  
Old 19th May 2009
DutchDaemon's Avatar
DutchDaemon DutchDaemon is offline
Real Name: Ben
Spam Refugee
 
Join Date: Jul 2008
Location: Rotterdam, The Netherlands
Posts: 336
Default

Redirection alone is half the story. The redirected traffic must be allowed to continue on to the destination. This will usually work (assuming the target is behind another interface):

Code:
(this takes care of the 'pass in' part on the external side)
rdr pass on $ext_if inet proto tcp from any to $ext_if port 3133 -> 192.168.1.133 port 3389
rdr pass on $ext_if inet proto tcp from any to $ext_if port 3130 -> 192.168.1.130 port 3389
(this will take care of the 'pass out' part on the internal side)
pass out quick on $int_if inet proto tcp from any to 192.168.1.133 port 3389 keep state
pass out quick on $int_if inet proto tcp from any to 192.168.1.130 port 3389 keep state
etc.
Reply With Quote