Date: Thu, 13 Oct 2005 08:33:43 +0400 From: Artemiev Igor <ai@bmc.brk.ru> To: Daniel Hartmeier <daniel@benzedrine.cx> Cc: freebsd-pf@freebsd.org Subject: Re: NAT states Message-ID: <20051013083343.0c8dbb2d.ai@bmc.brk.ru> In-Reply-To: <20051012175937.GA2605@insomnia.benzedrine.cx> References: <20051011121205.4dfa7cf2.ai@bmc.brk.ru> <d4f1333a0510110336r71fae318w2d420a647a2e9c4b@mail.gmail.com> <d4f1333a0510110337rd8ce894qd45b285c1715f9c3@mail.gmail.com> <20051011155421.4e3b69cb.ai@bmc.brk.ru> <20051012175937.GA2605@insomnia.benzedrine.cx>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 12 Oct 2005 19:59:37 +0200 Daniel Hartmeier <daniel@benzedrine.cx> wrote: > Because a state entry does not allow a packet to pass _through_ the > firewall, but only to pass on one interface (the interface the state > was created on), in general. By default, if an interface is not specified, state operates on any interface. State was created on "self" aka any local interface, but didn`t match passing packets. I tried to set "set state-policy floating" explicitly, but to no effect. -- iprefetch ai
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20051013083343.0c8dbb2d.ai>