port-based redirect ceased to work after upgrading Capitan to 10.11.3

...I add a few comments on what has been checked so far:

- port 8000 is open at router level

- OSX El Capitan (10.11.3) application firewall is turned off in the system preferences

- OSX server adaptive firewall is turned off (using sudo /Applications/Server.app/Contents/ServerRoot/usr/libexec/afctl -X)

- when checking port 8000 from canyouseeme.org it is recognised as open

...still, the request never makes it to the machine...

The virtual machine offering some web content exposes port 8000 under its own IP, a port redirect at OSX Server level seemed to me to be the easiest way to access that VM content (happy to take any advice of course...)

...and well, the router is configured to forward calls on ports 80, 443 and 8000 to the mac. On ports 80 and 443 the server is responding as expected (delivering its own web content), on 8000 it looks like the OSX-redirect is just returning the redirect target address rather than really redirecting to the VM and yielding the content.

Thanks for looking into this.

...well it is configured on NAT on the primary adapter and bridge/host-only on a second. If I disable the NAT, the VM sits waiting for an IP and does not launch... this is linked to the use-case for which it has been designed, just launching a tiny boot2docker linux as base-VM for docker applications (https://docs.docker.com/engine/installation/mac/), which seems to rely on its own internal IP realm in some instances.

wow... I just played around a bit more, and here is what now worked:

I simply removed the redirect in the OSX server! And now the mac is simply listening on 8000 and retrieving the VM content... !!

I never tried this before, because it was my first approach on El Capitan 10.11.2, where it never worked, and the redirect did. Now on 10.11.3 it is working without the redirect (totally preferred!!)

Thanks for the sparring round!