Reputation: 48572
How do I get the original destination IP of a redirected connection with pf on FreeBSD?
When I'm redirecting a connection with iptables on Linux with a -j REDIRECT rule, the program that receives the redirected connection can do getsockopt(sockfd, SOL_IP, SO_ORIGINAL_DST, &val, &len); to get the original, pre-redirection destination IP of the connection. How do I do the same thing when I'm redirecting a connection with pf on FreeBSD with an rdr rule?
Upvotes: 4
Views: 949
Answers (1)
Reputation: 96
Just solved this problem yesterday on MacOS, didn't test on FreeBSD, I think it's similar.
you need pfioc_natlook struct from net/pfvar.h.
General steps are:
- initialize
pfioc_natlooktopnl - fill pnl with client socket's ip & port(saddr,sxport), proxy server's bind ip & port(daddr, dxport)
- open('/dev/pf'), get its fd
- do ioctl(fd, C.DIOCNATLOOK, *pnl), then pnl's
rdxportandrdaddrwill be connection's original port & ip
Anyone still interested in this problem can check this gist: https://gist.github.com/gkoyuncu/f8aad43f66815dac7769
I did a mini POC program with golang(CGO wrapper), it works on MacOS: https://github.com/monsterxx03/pf_poc
Upvotes: 5
Related Questions
- Retrieving original destination from iptables after REDIRECT
- How to get source IP address of a UDP packet using recvfrom in nasm?
- Getting the source address of an incoming socket connection
- How can I get a connected client's IP address?
- I ported code from FreeBSD to Linux but it doesn't extract destination address
- add custom port forward rule to ipfw on freebsd
- Capture destination IP in TCP Python SocketServer
- Getting AltQ working in pf.conf (limiting inbound Tor traffic)
- FreeBSD IPFW add an IP to table
- How to get original destination port of redirected UDP message?