netbird | pfsync | haproxy | nginx | client
dnat with legacy packet filter
# dashboard & mgmt ==> dnc-haproxy rdr on xennet0 inet proto tcp from any to any port 80 -> 10.1.0.27 port 80 # dashboard & mgmt ==> dnc-haproxy rdr on xennet0 inet proto tcp from any to any port 443 -> 10.1.0.27 port 443 # # netbird demo # # no need -- here mgmt api points to 443 #rdr on xennet0 inet proto tcp from any to any port 33073 -> 10.1.0.27 port 33073 # signal (http not https) rdr on xennet0 inet proto udp from any to any port 10000 -> 10.1.0.20 port 10000 rdr on xennet0 inet proto tcp from any to any port 10000 -> 10.1.0.20 port 10000 # coturn rdr on xennet0 inet proto tcp from any to any port 3478 -> 10.1.0.20 port 3478 rdr on xennet0 inet proto udp from any to any port 3478 -> 10.1.0.20 port 3478 rdr on xennet0 inet proto tcp from any to any port 5349 -> 10.1.0.20 port 5349 rdr on xennet0 inet proto udp from any to any port 5349 -> 10.1.0.20 port 5349 rdr on xennet0 inet proto udp from any to any port 49152:49999 -> 10.1.0.20 port 49152:* # netbird agent - wireguard rdr on xennet0 inet proto tcp from any to any port 51853 -> 10.1.0.53 port 51853 rdr on xennet0 inet proto udp from any to any port 51853 -> 10.1.0.53 port 51853 rdr on xennet0 inet proto tcp from any to any port 51854 -> 10.1.0.54 port 51854 rdr on xennet0 inet proto udp from any to any port 51854 -> 10.1.0.54 port 51854