How to convert "no-nat" to new OpenBSD 4.7 NAT/RDR syntax
From a mail message on the OpenBSD misc list:
Quote:
Hi everybody,
I'm not that sure this is the right mailing list which I can post this
message. The misc sounds too generic and hopefully the tech is not
supposed to receive such a trivial question.
However, I'm just going to upgrade to OpenBSD 4.7 and because of the new
pf syntax I have to "convert" my configurations. It's not a big deal
except for one thing.
I didn't find the replacement for the "no nat" statement.
How is that supposed to be specified now?
Many thanks in advance.
|
The answer from OpenBSD developer Bob Beck:
Quote:
> However, I'm just going to upgrade to OpenBSD 4.7 and because of the new
> pf syntax I have to "convert" my configurations. It's not a big deal
> except for one thing.
> I didn't find the replacement for the "no nat" statement.
> How is that supposed to be specified now?
you don't need to have nat before pass now, so you can simply do stuff like.
Code:
pass in quick on em0 from <nospamd> to any port 25
pass in quick on em0 from any to any port 25 rdr-to 127.0.0.1 8025
|
Reference: http://marc.info/?l=openbsd-tech&m=127456244922550&w=2
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
|