[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ipfilter
Subject:    RE: iptables -> ipf
From:       "a b" <tripivceta () hotmail ! com>
Date:       2006-05-13 14:04:39
Message-ID: BAY108-F225C7660C5A567B5E810FBDCAD0 () phx ! gbl
[Download RAW message or body]

>here's a few of the iptables rules i'm staring at (yeah, i obfuscated the 
>public ip):
>
>-A PREROUTING -i eth1 -p tcp -m tcp --dport 10236 -j DNAT --to-destination 
>1.2.3.103:443
>-A PREROUTING -i eth1 -p tcp -m tcp --dport 10238 -j DNAT --to-destination 
>1.2.3.104:443
>-A PREROUTING -i eth1 -p tcp -m tcp --dport 10183 -j DNAT --to-destination 
>1.2.3.105:443
>[...]
>
>is the ipf equivalent obvious to anyone out there?

Absolutely, and it works like a charm.

/etc/opt/ipf/ipnat.conf needs to be created. Inside of this file, you'll 
need to use the RDR directive.

Unfortunately as I don't have access to the FW from this system, I can't 
provide an example, but do look at ipnat.conf man pages, examples are 
provided there.


[prev in list] [next in list] [prev in thread] [next in thread]