summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorMarkus Friedl <markus@cvs.openbsd.org>2008-05-19 14:57:32 +0000
committerMarkus Friedl <markus@cvs.openbsd.org>2008-05-19 14:57:32 +0000
commit1cb2deb4ec6238a44b33617aa901c1f369343143 (patch)
tree32aea1683341de1bf468a2fa218ea6f2b45de6d7
parentbc731f83b4b63b2d161048775b218d6d93597932 (diff)
add divert-to/divert-reply; ok henning, pyr
-rw-r--r--share/man/man5/pf.conf.520
1 files changed, 18 insertions, 2 deletions
diff --git a/share/man/man5/pf.conf.5 b/share/man/man5/pf.conf.5
index ff036aa78bf..dfa4d722bc1 100644
--- a/share/man/man5/pf.conf.5
+++ b/share/man/man5/pf.conf.5
@@ -1,4 +1,4 @@
-.\" $OpenBSD: pf.conf.5,v 1.396 2008/05/07 07:32:37 markus Exp $
+.\" $OpenBSD: pf.conf.5,v 1.397 2008/05/19 14:57:31 markus Exp $
.\"
.\" Copyright (c) 2002, Daniel Hartmeier
.\" All rights reserved.
@@ -27,7 +27,7 @@
.\" ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
.\" POSSIBILITY OF SUCH DAMAGE.
.\"
-.Dd $Mdocdate: May 7 2008 $
+.Dd $Mdocdate: May 19 2008 $
.Dt PF.CONF 5
.Os
.Sh NAME
@@ -1833,6 +1833,22 @@ keyword.
.It Ar rtable Aq Ar number
Used to select an alternate routing table for the routing lookup.
Only effective before the route lookup happened, i.e. when filtering inbound.
+.It Xo Ar divert-to Aq Ar host
+.Ar port Aq Ar port
+.Xc
+Used to redirect packets to a local socket bound to
+.Ar host
+and
+.Ar port .
+The packets will not be modified, so
+.Xr getsockname 2
+on the socket will return the original destination address of the packet.
+.It Ar divert-reply
+Used to receive replies for sockets that are bound to addresses
+which are not local to the machine.
+See
+.Xr setsockopt 2
+for information on how to bind these sockets.
.It Ar probability Aq Ar number
A probability attribute can be attached to a rule, with a value set between
0 and 1, bounds not included.