View Single Post
  #2   (View Single Post)  
Old 15th February 2012
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 7,977
Default

You have missed a critical document, the OpenBSD Upgrade Guide 5.0. I'm going to quote from it:
Quote:
PF changes requiring changes to your pf.conf rules

ftp-proxy(8) and tftp-proxy(8) have changed: They now use divert-to instead of rdr-to, which improves performance. Old rules like these:
pass in quick proto tcp to port ftp rdr-to 127.0.0.1 port 8021 pass in quick on internal proto udp to port tftp rdr-to 127.0.0.1 port 6969
should be replaced with:
pass in quick inet proto tcp to port ftp divert-to 127.0.0.1 port 8021 pass in quick on internal inet proto udp to port tftp divert-to 127.0.0.1 port 6969
Note that with divert-to, the address family (in this example inet) must be specified explicitly.
Reply With Quote