Round-Robin AND Static-Port in the same rule?

daemonbak · #1 **(View Single Post)** 17th July 2015

I was wondering why the rule that I have defined as static-port also shows up as round-robin. Is this right?

pf.conf excerpt:

Code:

### Network Address Translation
match out log on egress inet from !(egress:network) to any nat-to (egress:0)

### Network Address Translation (NAT with outgoing source port randomization)
match out log on egress from !$xboxone to any nat-to (egress:0) port 1024:65535

### Do not perform source-port randomization for the XBox One
match out log on egress from $xboxone to any nat-to (egress:0) static-port

pfctl -a '*' -sr output:

Quote:

match out on egress inet from ! (egress:network) to any nat-to (egress:0) round-robin
match out log on egress inet from ! 192.168.222.4 to any nat-to (egress:0) port 1024:65535 round-robin
match out log on egress inet from 192.168.222.4 to any nat-to (egress:0) round-robin static-port

Thanks as always

jggimi · #2 **(View Single Post)** 17th July 2015

I found this conversation in misc@ archives.

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Help with my pf rule please	whispersGhost	OpenBSD Security	0	19th April 2012 07:54 AM
Help please open port 8005 pf rule set	whispersGhost	OpenBSD Security	6	16th April 2012 11:07 PM
problem with static v4 IPs	adealey	OpenBSD General	9	8th March 2010 11:29 AM
pf: why is that rule not working?	ivanatora	FreeBSD General	14	11th December 2008 09:32 AM
Cannot assign static IP.	bsdnewbie999	OpenBSD General	5	21st June 2008 09:50 AM