SEO

Hi there. I'm just on a dead end here.

Now, this is how my network is arranged:

Internet ADSL --> ext_if --> OpenBSD 3.5 --> int_if --> Linksys Router
(WRT54G) --> Internal network (my machine)

I have the following interfaces on OpenBSD:

tun0 (created by openbsd ppp -nat -ddial pppoe) IP is dynamic
vr0 (connection between ADSL Modem and OpenBSD) IP is not assigned
dc0 (connection between OpenBSD and Linksys router) IP is 192.168.1.1
and broadcast is the IP of tun0 (I use MYADDR on ppp.linkup)

Pppoe works fine, I have internet on the OpenBSD box.
Gateway'ing also works fine, linksys router gets the ip, dns, etc.,
correctly from the OpenBSD box.
And Linksys is configured correctly, since my machine on the internal
network have internet access.


But I need to redirect everything (either incoming or outgoing) to
port 4003.
I have a program running on 4003 expecting connections. This program
will act as a "proxy", by checking the contents of each package and
either dropping the packets, or forwarding them to their original
destination creating sockets.
I've tried with the program listen()ing on INADDR_ANY, 127.0.0.1 and
192.168.1.1

I've created a rdr rule on pf, but it doesn't work.
my pf.conf looks like this:
####
rdr pass on dc0 proto tcp from any to any -> 127.0.0.1 port 4003
## also tried 192.168.1.1 instead of 127.0.0.1

pass in quick on tun0 inet proto tcp from any to any
pass out quick on tun0 inet proto tcp from any to ant
pass in quick on dc0 proto tcp from any to any
pass out quick on dc0 proto tcp from any to any

block all
####

The rule doesn't seems to be working. The "proxy" program does not
receive any incoming connections whatsoever. The program works because
I've tested it on other network configurations and it does receive the
incoming connection.

I just don't know what else to try. And even if it's possible to do
such thing like this.

I'm terribly sorry if this has been asked a lot of times; I've been
reading and looking and found nothing useful.

Thanks for all your patience.

Nico.

On 17 Sep 2004 18:13:51 -0700, nicomv@gmail.com (Nicolas) wrote:

>Hi there. I'm just on a dead end here.

What happened to your other thread. You didn't answer me.

>and broadcast is the IP of tun0 (I use MYADDR on ppp.linkup)

What is that supposed to mean?

>But I need to redirect everything (either incoming or outgoing) to
>port 4003.

That doesn't make sense. Tell us what you expect out of your
Sequelink server. It is very unusual to have both incoming and
outgoing traffic redirected manually. Usually just one direction and
then the proxy will manage the responses back to the client.

>I've created a rdr rule on pf, but it doesn't work.
>my pf.conf looks like this:
>####
>rdr pass on dc0 proto tcp from any to any -> 127.0.0.1 port 4003

Check to see if your server is actually listening on that socket:

$ netstat -anf inet

/pm