The more I think about this ... I think PF should work as a NAT solution, if you are able to eliminate the redirect. Just have the client connect directly to the server. PF will translate the sending address and port, and keep track of the stateful session.
|