Date: Wed, 18 Oct 2006 15:13:11 -0400 From: Martin Turgeon <turgeon.martin@gmail.com> To: 'Erik Norgaard' <norgaard@locolomo.org> Cc: freebsd-bugs@freebsd.org, freebsd-questions@freebsd.org, freebsd-pf@freebsd.org Subject: RE: Routing with external interface doesn't work after a while Message-ID: <0J7C00MEQIPLGZE0@VL-MO-MR003.ip.videotron.ca> In-Reply-To: <45365929.8060608@locolomo.org>
next in thread | previous in thread | raw e-mail | index | archive | help
You're right on this, the filtering rules aren't written with the = brackets. But isn't pf routing the packets to an interface instead of an IP = address. Thanks a lot Martin -----Message d'origine----- De=A0: Erik Norgaard [mailto:norgaard@locolomo.org]=20 Envoy=E9=A0: 18 octobre 2006 12:41 =C0=A0: Martin Turgeon Cc=A0: freebsd-pf@freebsd.org; freebsd-bugs@freebsd.org; freebsd-questions@freebsd.org Objet=A0: Re: Routing with external interface doesn't work after a while Martin Turgeon wrote: > The NAT rules are already written that way: >=20 > nat on $wan_if tag LAN_WAN_NAT tagged LAN_WAN -> ($wan_if) > nat on $wan_if tag WLS_WAN_NAT tagged WLS_WAN -> ($wan_if) > nat on $wan_if tag AP_WAN_NAT tagged AP_WAN -> ($wan_if) > nat on $wan_if tag VPN_WAN_NAT tagged VPN_WAN -> ($wan_if) How are your tags created? If somewhere in the nat/tag/filtering process = you've missed the dynamic update of the external ip it may fail = there... Cheers, Erik --=20 Ph: +34.666334818 web: http://www.locolomo.org X.509 Certificate: http://www.locolomo.org/crt/8D03551FFCE04F0C.crt Key ID: 69:79:B8:2C:E3:8F:E7:BE:5D:C3:C3:B1:74:62:B8:3F:9F:1F:69:B9
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?0J7C00MEQIPLGZE0>