my case is this:
now,if i'delete te rule
i can still access from outside to the port 3389 and go to machine redirected
the
rule is open a port without permition o the external interface, is this normal for PF ?
the ports have been changed for the example
Code:
ext_if="re0"
int_if="re1"
int_external_ports={3389,22}
forward_ports={3389,22}
rdr pass on $ext_if proto tcp from any to any port 3389 -> 192.168.x.x port 3389
block all
pass in on $int_if inet proto tcp from any to any port $forward_ports flags S/SA keep state
if forgot to put this line
pass out on $int_if inet proto tcp from any to any port $forward_ports flags S/SA keep state
pass in on $ext_if proto tcp from any to any port $int_external_ports flags S/SA keep state
now,if i'delete te rule
Code:
pass in on $ext_if proto tcp from any to any port $int_external_ports flags S/SA keep state
the
Code:
rdr
the ports have been changed for the example