[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ipfilter
Subject:    Re: Rdr Rule Syntax
From:       Darren Reed <darrenr () reed ! wattle ! id ! au>
Date:       2006-01-07 11:14:11
Message-ID: 200601071114.k07BEBbU026203 () firewall ! reed ! wattle ! id ! au
[Download RAW message or body]

[ Charset ISO-8859-9 unsupported, converting... ]
> Hello,
> 
> Q1
> ipnat rdr seems to have two ways of defining filtering src/dst addresses 
> part in the rule syntax. The following two rules are valid for ipnat.
> 
> rdr bge1 from 0.0.0.0/0 to 192.168.6.190/255.255.255.255 port = 8080 -> 
>     10.0.0.2 port 8080 tcp round-robin tag "YD:10"
> rdr bge1 192.168.6.190/255.255.255.255 port 8080 ->                     
>     10.0.0.2 port 8080 tcp round-robin tag "YD:10"
> 
> Are these two rules same and do the same job ?

They're equivalent, yes, the same no.

> Q2
> And also:
> rdr bge1 from A to any -> X port 8080
> is also valid.
> This rule seems to map all trafic from A, to X port 8080. But, is there 
> way to map all traffic from A, to X without changing the destination 
> port number?

Yes.

rdr bge1 from A to any -> X ip

Darren
[prev in list] [next in list] [prev in thread] [next in thread]