View Single Post
  #1   (View Single Post)  
Old 3rd April 2011
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,128
Default How to convert "no-nat" to new OpenBSD 4.7 NAT/RDR syntax

From a mail message on the OpenBSD misc list:

Quote:
Hi everybody,

I'm not that sure this is the right mailing list which I can post this
message. The misc sounds too generic and hopefully the tech is not
supposed to receive such a trivial question.

However, I'm just going to upgrade to OpenBSD 4.7 and because of the new
pf syntax I have to "convert" my configurations. It's not a big deal
except for one thing.
I didn't find the replacement for the "no nat" statement.
How is that supposed to be specified now?

Many thanks in advance.
The answer from OpenBSD developer Bob Beck:
Quote:
> However, I'm just going to upgrade to OpenBSD 4.7 and because of the new
> pf syntax I have to "convert" my configurations. It's not a big deal
> except for one thing.
> I didn't find the replacement for the "no nat" statement.
> How is that supposed to be specified now?

Code:
pass quick
you don't need to have nat before pass now, so you can simply do stuff like.

Code:
pass in quick on em0 from <nospamd> to any port 25
pass in quick on em0 from any to any port 25 rdr-to 127.0.0.1 8025
Reference: http://marc.info/?l=openbsd-tech&m=127456244922550&w=2
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote