diff --git a/net/containernetworking-plugins/pkg-message b/net/containernetworking-plugins/pkg-message
--- a/net/containernetworking-plugins/pkg-message
+++ b/net/containernetworking-plugins/pkg-message
@@ -8,3 +8,23 @@
 ...
 # sysrc pf_enable=YES
 # service pf start
+
+The sample PF configuration includes support for port redirections. These are
+implemented as redirect rules in anchors nested under cni-rdr.
+
+Support for redirecting connections from the container host to services running
+inside a container is included for FreeBSD 13.3 and later. To enable this, first
+load the pf kernel module, by adding pf_load="YES" to /boot/loader.conf and
+enable PF support for these redirections using sysctl:
+
+# kldload pf
+# sysctl net.pf.filter_local=1
+# service pf restart
+
+These redirect rules do not currently work if the destination address is
+localhost (e.g. 127.0.0.1 or ::1) - always use the hosts IP address when
+connecting to a service inside a container using a port redirection. For example
+if host port 1234 is redirected to an http service running in a container, you
+could connect to it using:
+
+# fetch -o- http://$(hostname):1234
diff --git a/sysutils/podman-suite/Makefile b/sysutils/podman-suite/Makefile
--- a/sysutils/podman-suite/Makefile
+++ b/sysutils/podman-suite/Makefile
@@ -1,5 +1,5 @@
 PORTNAME=	podman-suite
-PORTVERSION=	20230721
+PORTVERSION=	20230817
 CATEGORIES=	sysutils
 
 MAINTAINER=	dfr@FreeBSD.org