bastille [ENHANCEMENT] rdr option to set from

[ENHANCEMENT] rdr option to set from

Open eoli3n opened this issue 3 years ago • 2 comments

Is your feature request related to a problem? Please describe. I want to be able to create RDR and restrict from a specific host|subnet. Using rdr tcp 8384 8384 results as

$ rdr pass on vtnet0 inet proto tcp from any to any port = 8384 -> 10.0.0.3 port 8384

Describe the solution you'd like I would like to be able to set from 192.168.0.0/24 to any from RDR.

$ rdr pass on vtnet0 inet proto tcp from 192.168.0.0/24 to any port = 8384 -> 10.0.0.3 port 8384

Jun 14 '21 17:06 eoli3n

any news on this? would be a quite useful feature, thanks

Nov 25 '22 11:11 ivomarino

Thank you for your patience on this one. It's now on my roadmap; hopefully by EOY. I recently ran into this myself where I needed something like:

$ rdr pass on vtnet0 inet proto tcp from !<blacklist> to any port = 443 -> 10.0.0.20 port 443

I've included this in an audit of improvements for rdr.sh, which also includes ipv6 improvements.

Nov 25 '23 22:11 cedwards

bastille bastille copied to clipboard

[ENHANCEMENT] rdr option to set from

bastille
bastille copied to clipboard