diff options
| author | Henning Brauer <henning@cvs.openbsd.org> | 2002-09-06 09:46:53 +0000 |
|---|---|---|
| committer | Henning Brauer <henning@cvs.openbsd.org> | 2002-09-06 09:46:53 +0000 |
| commit | f468b92a6d924d5db9fa6e304952e5b12a0d82ea (patch) | |
| tree | 6325335ef76569e1654c98b10dd550ab4308744a /share/man | |
| parent | a02f2877e1b6089eb24f341e9abb462a26c6f7e5 (diff) | |
yes, you can specify the address family in nat/rdr/binat rules.
noticed through a misc@ mail by Paul de Weerd
Diffstat (limited to 'share/man')
| -rw-r--r-- | share/man/man5/pf.conf.5 | 11 |
1 files changed, 6 insertions, 5 deletions
diff --git a/share/man/man5/pf.conf.5 b/share/man/man5/pf.conf.5 index d49d2799579..307a3ec32f4 100644 --- a/share/man/man5/pf.conf.5 +++ b/share/man/man5/pf.conf.5 @@ -1,4 +1,4 @@ -.\" $OpenBSD: pf.conf.5,v 1.78 2002/08/10 15:40:05 pb Exp $ +.\" $OpenBSD: pf.conf.5,v 1.79 2002/09/06 09:46:52 henning Exp $ .\" .\" Copyright (c) 2002, Daniel Hartmeier .\" All rights reserved. @@ -943,13 +943,14 @@ pf_rule = action ( "in" | "out" ) [ "max-mss" number ] [ "allow-opts" ] [ "label" string ] . -nat_rule = [ "no" ] "nat" "on" ifspec [ protospec ] hosts +nat_rule = [ "no" ] "nat" "on" ifspec [ af ] [ protospec ] hosts [ "->" address [ portspec ] ] . -binat_rule = [ "no" ] "binat" "on" interface-name [ "proto" ( proto-name | - proto-number ) ] "from" address "to" ipspec [ "->" address ] . +binat_rule = [ "no" ] "binat" "on" interface-name [ af ] + [ "proto" ( proto-name | proto-number ) ] + "from" address "to" ipspec [ "->" address ] . -rdr_rule = [ "no" ] "rdr" "on" ifspec [ protospec ] "from" ipspec +rdr_rule = [ "no" ] "rdr" "on" ifspec [ af ] [ protospec ] "from" ipspec "to" ipspec [ portspec ] [ "->" address [ portspec ] ] . action = "pass" | "block" [ return ] | "scrub" . |