NIC_EXT="em0"                   # FreeBSD-Host mit IP = 192.168.1.1
NIC_INT="tap0"                  # Linux-VM mit IP = 192.168.1.200
IP_HOST="192.168.1.1"           # locale IP
IP_VM="192.168.1.200"           # IP in der VM

### Rules must be in order: options, normalization, queueing, translation, filtering
rdr log on $NIC_EXT proto { tcp, udp } from any to $IP_HOST port 24 -> $IP_VM port 22
rdr pass on $NIC_EXT proto icmp from any to $IP_HOST -> $IP_VM
set skip on lo0

block in all
pass out all keep state
pass out log on $NIC_EXT all
pass in all keep state