Date: Thu, 23 Nov 2006 11:20:53 -0800 From: "Jon Simola" <jsimola@gmail.com> To: "fwun@bigpond.net.au" <fwun@bigpond.net.au> Cc: freebsd-pf@freebsd.org Subject: Re: how to route to a local server thru PF router Message-ID: <8eea04080611231120x56f393e5r41a43a98a2f5a082@mail.gmail.com> In-Reply-To: <16201878.1164245885264.JavaMail.root@web03sl> References: <16201878.1164245885264.JavaMail.root@web03sl>
next in thread | previous in thread | raw e-mail | index | archive | help
On 11/22/06, fwun@bigpond.net.au <fwun@bigpond.net.au> wrote: > The current NAT rules in the PF router setup as: > > # pfctl -a NATRULES -sn > nat on sis0 inet from 192.168.1.0/24 to any -> (sis0) round-robin > nat on sis0 inet from 172.17.3.0/24 to any -> (sis0) round-robin > nat on sis0 inet from 10.1.10.0/24 to any -> (sis0) round-robin > > I m connected to the 172.17.3.0/24 network. The local freebsd server is connected to 10.1.10.0/24 network. > > And the PF router is already setup as a default gateway. > > How can I modify the PF rules so that I can login from 172.17.3.0/24 to 10.1.10.0/24 network? Your connection attempt will match the second nat rule. A quick way to avoid that would be adding a nat rule such as below first (nat rules are always first match): no nat from 172.17.3.0/24 to 10.1.10.0/24 -- Jon
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?8eea04080611231120x56f393e5r41a43a98a2f5a082>