Date: Sun, 5 Mar 2017 00:02:40 +1100 (EST) From: Ian Smith <smithi@nimnet.asn.au> To: Nagy L?szl? Zsolt <gandalf@shopzeus.com> Cc: freebsd-questions@freebsd.org Subject: Re: TCP connection stalled Message-ID: <20170304235747.D9983@sola.nimnet.asn.au> In-Reply-To: <20170304230752.E9983@sola.nimnet.asn.au> References: <mailman.95.1488628802.4904.freebsd-questions@freebsd.org> <20170304230752.E9983@sola.nimnet.asn.au>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 4 Mar 2017 23:47:34 +1100, Ian Smith wrote: > > add 00005 divert natd all from any to any via nfe0 > > add 00102 allow all from any to any out > > That's any packets out to the outside, AND any out to the inside. > > Likely best to be more specific (with recv $iface) unless ALL filtering > is only wanted on inbound packets (from outside or inside interfaces) Correction: with 'xmit $iface' for outbound packets via that interface. cheers, Ian
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20170304235747.D9983>