[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ipfilter
Subject:    Re: Can ipfilter be used to remap TCP ports?
From:       "John Doe" <rekcut11 () excite ! com>
Date:       2005-05-18 6:40:28
Message-ID: 20050518064028.15D6C2999A () xprdmailfe21 ! nwk ! excite ! com
[Download RAW message or body]


Hi Darren,

I have a similar problem, where I need to make all outgoing IKE traffic to have a \
source port of 500 (all outgoing port 500 traffic towards a certain IP must also have \
the same source port). I have tried the following rule that you gave with no luck:

map lnc0 from any to xx.xx.xx.xx/32 port = 500 -> 0/0 port = 500 udp

and I always get the following error, which by trial and error have narrowed it down \
to the second port = 500 (with or without the =): 

syntax error error at "port", line 1

Is it possible to do this with ipfilter? btw I am using version 4.1.7 on FreeBSD 5.3, \
so maybe need to use a later version?

Regards

Rekkie


> Subject: Re: Can ipfilter be used to remap TCP ports?

> This is not really NAT in the traditional sense.  For instance,<br>> there is no \
> need to retain any connection-oriented history here.<br>> I have tried various \
> flavors of the rule:<br>> <br>> rdr hme0 1.2.3.4/32 port 540 -> 1.2.3.4 port 999 \
> tcp<br><br>Try this instead:<br><br>map hme0 from any to 1.2.3.4/32 port = 540 -> \
> 0/0 port 999 tcp<br><br>Darren<br>

_______________________________________________
Join Excite! - http://www.excite.com
The most personalized portal on the Web!


[prev in list] [next in list] [prev in thread] [next in thread]