Greetings all,
This is probably yet another NAT reflection question, but I can't seem to get this working. I know exactly what I want to do the the src and dest addresses, but I'm not sure how to achieve this with PF rules. I would like to avoid using split horizon DNS.
Basically, I would like to rewrite packets destined for a certain public IP so they instead go internally, and then get rewritten back to look like they are coming from the public IP. Seems like a NAT and RDR rule should be able to take care of this.
Thanks for any help!
This is probably yet another NAT reflection question, but I can't seem to get this working. I know exactly what I want to do the the src and dest addresses, but I'm not sure how to achieve this with PF rules. I would like to avoid using split horizon DNS.
Basically, I would like to rewrite packets destined for a certain public IP so they instead go internally, and then get rewritten back to look like they are coming from the public IP. Seems like a NAT and RDR rule should be able to take care of this.
Code:
+----------+ ROUTER: 10.0.0.1
|PACKET | +-------------------------+
|S:10.0.0.x| | NAT |
+----------+ REQ 72.1.1.2:80 |D:72.1.1.2| | S:10.0.0.x --> 10.0.0.1 | +-------------+
| CLIENT |---------------------------------->| D:72.1.1.2 --> 10.0.0.2 |------->| SERVER |
| 10.0.0.x | +------------------------ + | 10.0.0.2:80 |
| |<------------------------------+---| S:72.1.1.2 <-- 10.0.0.2 |<-------| |
+----------+ |PACKET | | D:10.0.0.x <-- 10.0.0.1 | +-------------+
|S:72.1.1.2| +-------------------------+
|D:10.0.0.x|
+----------+
Thanks for any help!