[ previous ] [ next ] [ threads ]
 
 From:  Michael Sierchio <kudzu at tenebras dot com>
 To:  "Suraj K. Rai" <surajrai at mac dot com>
 Cc:  list at m0n0wall dot neon1 dot net
 Subject:  Re: [m0n0wall] Firewall rule for NAT related question ...
 Date:  Mon, 07 Apr 2003 06:55:11 -0700 
Suraj K. Rai wrote:
> Hi,
> 
> I would like to NAT port 443 (HTTPS) from my WAN interface to a specific 
> host on my LAN interface.
> 
> I added a firewall rule:
> 
>     Proto: TCP, Source: *, Port: 443, Destination: *, Port: 443
> 
> but this did not work.  However the following:
> 
>     Proto: TCP, Source: *, Port: *, Destination: *, Port: 443
> 
> worked.  Can anyone explain why setting the source port to * allows the 
> packet in whereas specifying
> the source port to 443 does not work?

Client source ports are usually random high-numbered ports, right...?