> Subject says it all really. I'm using a simple rule to redirect traffic
> aimed at port 80, to port 8080 (nice way to avoid having to run a web
> server as root).
>
> The rule is something like (can't remember exactly)
>
> ipfwadm -I -a accept -P tcp -D localhost 80 -r 8080
>
> Under 2.0.31pre9, things work as expected, but under 2.1.54, traffic sent
> to port 80 gets no reply, and netstat shows sockets hanging around in the
> "SYN_RECV" state.
This is an interesting statement, as transparent proxying is broken
in 2.0.30, 2.0.31-pre1-9 and most 2.1.x kernels (so it didn't work
in 2.0.31-pre9 either, _when_ the redirect port was different from
the original port). Don't know how this could work for you...
Anyway, we fixed this and our patch will be in 2.0.31. Furthermore,
we plan to fix it in 2.1.x when we have some spare time, somewhere in
the next weeks, I hope. Be patient...
-- Jos Vos <jos@xos.nl>
-- X/OS Experts in Open Systems BV | Phone: +31 20 6938364
-- Amsterdam, The Netherlands | Fax: +31 20 6948204