On 6/11/05, Denis Doroshenko <[EMAIL PROTECTED]> wrote: > tell me, why sending a message that doesn't answer the > question? what is it? is it my poor english or explaining > skills or is it you, being slacker and not trying to understand > the question asked?
Maybe if you had stated the question properly, I would have answered it. > > On 6/10/05, Jason Crawford <[EMAIL PROTECTED]> wrote: > > It's very simple, try reading the ftp-proxy man page, as it has an > > example for exactly what you're doing, something like: > > rdr on $int_if inet proto tcp from $int_net to any port ftp -> > > 127.0.0.1 port 8021 > > this works only for packets that *come to* OpenBSD box to be > routed, not the packets that are *originated* at the OpenBSD box. > i.e. ftp from a remote box being routed through OpenBSD box will > go by this rdr rule, however ftp from the OpenBSD box will go > directly, and *not* be affected by this rdr rule. > and this was written in my message. There was no mention of packets originating from the OpenBSD box. Outgoing packets and packets originating from the box are two very different things. > > > I believe pf.conf man page also has examples for this too. Really, > > read the docs, because you might even learn something you weren't > > intending to. > > i believe, i understand this very least part of pf, and it works so > that i cannot catch *outgoing* packets. not only i had *read* all > docsavailbale to me (which was mentioned in the origonal > message), i have made several experiments and all of them > prove i am right. > > catching incoming packets (like ftp-proxy example and spamd > usage) does not help me with my tasks. so i asked what i asked. > > > Jason > > thank you a lot for the completely useless answer. try to be > more of a *reader*, than *writer* for the next time. I read it clearly, you just weren't clear in your request. Suddenly my drive to help you in my spare time, for free, is gone. And yes, I either know how, or can figure it out really fast. Good luck though. > > best regards. > > > On 6/10/05, Denis Doroshenko <[EMAIL PROTECTED]> wrote: > > > hello, > > > > > > is there possibility to catch outgoing packets on an interface? > > > while the question seems dumb, i seem to be stuck and > > > no man page/PF faq/web searches help me. it seems > > > that PF rdr-s only incoming packets. is this a correct > > > statement? is there any thoughts of extending PF > > > functionality to cover outgoing packet case (like > > > "rdr [in|out] on..." with "in" as default) or this sounds > > > unacceptable? > > > > > > thanks in advance. > > > > > > p.s. > > > what i am trying to do. i have a proggie on 127.0.0.1:port > > > (via inetd) which wants to receive a connection via PF's rdr, > > > lookup state table and then act as transparent proxy. > > > while this will work for routed connections (i.e. OpenBSD > > > box routes/NATs packets from others), but not for > > > connections originated from the OpenBSD box itself.
