Does PF support divert like IPFW?

freebsd bsd ipfw pf

Solution 1:

No, in OpenBSD v4.6 version, PF has no divert-like feature.

But good news, divert for PF will be included in OpenBSD v4.7 version

See http://www.mail-archive.com/[email protected]/msg11694.html for details. You could try it with OpenBSD-current branch / snapshots.

Solution 2:

If I remember correctly: PF has a special interface for monitoring purposes (pflog). You might wanna consult the manpage for it.

Solution 3:

pf does have a command called 'divert-to' that is supposed to provide for local transparent routing. See the pf.conf man page for slightly more details. It appears to be simple but it doesn't seem to want to do what I want it to do: local capture and redirection to a local port of outbound traffic which is locally generated.

Other similar commands which I have tried but to no avail are: 'rdr' which instructs a packet to have a new destination, overwriting the old one... useful for destination nat type applications. 'route-to' which instructs a packet to pass through another location before arriving at its original destination... doesn't accept a port, useful for routers, not so much for proxies.

Related

Reinstalling IIS on WinXP machine
Gateway and router on one computer
Firewall or other solution for automatic fail-over to a second server?
Is there anyway to manage HDD behind a Dell PERC H330 controller?
How to stop www-data's Apache processes?
Sendmail delays on some email addresses
Assign ethernet alias to KVM guest
HTTPS security warning for sub subdomains [duplicate]
Horrible Windows Server 2003 performance while copying files through Netbios
Where are the SMTP settings saved in IIS7/Win2008?
Why is network stack ignoring icmp replies from non-default interface?
How to connect to a local SQL Server?