Date: Sun, 27 Nov 2005 08:25:06 +0100 From: Daniel Hartmeier <daniel@benzedrine.cx> To: Volker <volker@vwsoft.com> Cc: freebsd-pf@freebsd.org Subject: Re: pf, nat, 2 public IP-addresses Message-ID: <20051127072505.GA21209@insomnia.benzedrine.cx> In-Reply-To: <438912DA.4080509@vwsoft.com> References: <438912DA.4080509@vwsoft.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Can you reproduce the problem (create one connection), then run pfctl -vsn (entire output) and pfctl -vss (the state using the wrong source address)? The connection might match the wrong nat rule (unlike filter rules, translation rules are first-match). Or the connection might not be nat'ed at all. Are the two proxies you mentioned running on the same box as pf? Why do you need to nat at all? Because you can't bind(2) one's outgoing connections to the alias address? So you want to replace source 1.2.3.2 with 1.2.3.3 for these connections? Daniel
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20051127072505.GA21209>