RDR NAT failed: packet coming back on wrong interface
This is a discussion on RDR NAT failed: packet coming back on wrong interface within the IPFilter forums, part of the System Security and Security Related category; Hi all, I have tried to find the awnser on the archive but I just found similar problem, not exactly ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
02-14-2006
|
|||
|
|||
RDR NAT failed: packet coming back on wrong interface
Hi all,
I have tried to find the awnser on the archive but I just found similar problem, not exactly mine. Here it is: I have two network interfaces on the same lan, and I want to redirect incoming traffic to port 80 on both interface to port 8081, here is what it looks: eri0: 172.16.0.201 rf0: 172.16.0.214 rdr rf0 from 172.16.0.0/16 to any port = 80 -> 172.16.0.214 port 8081 tcp rdr eri0 from 172.16.0.0/16 to any port = 80 -> 172.16.0.201 port 8081 tcp Let's say that eri0 is the fist route in the Solaris routing table, all traffic that goes in rf0 will be NAted but since the route of eri0 matches before, the packets coming back to my clients are sent on eri0, causing IPFilter not to recognize the connexion... How can I overcome this problem? thks __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com 
|
Linear Mode
