Date: Wed, 22 Aug 2007 22:00:11 GMT From: Max Laier <max@love2party.net> To: freebsd-pf@FreeBSD.org Subject: Re: kern/115725: pf nat -> ($if) works only intermittently Message-ID: <200708222200.l7MM0BIK027234@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR kern/115725; it has been noted by GNATS. From: Max Laier <max@love2party.net> To: bug-followup@freebsd.org, kjelderg@gmail.com Cc: Subject: Re: kern/115725: pf nat -> ($if) works only intermittently Date: Wed, 22 Aug 2007 23:44:39 +0200 > nat pass on $ext_if from $freenx_jail_ip to any -> ($ext_if) > > When I then jexec a shell in the jail and try to do things on the > network, only 1 in 3 or so connections would work. Ideally they should > have all worked. This usually happens when you have aliases on $ext_if. In this case ($ext_if) expands to a round-robin pool with all addresses assigned to the interface. If you want to use the primary address on that interface you can use the "($ext_if:0)" syntax to exclude aliases. If the address you want to use is an alias, you have to specify it manually. -- Max
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200708222200.l7MM0BIK027234>