From owner-freebsd-pf@FreeBSD.ORG Fri Feb 5 19:26:07 2010 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id DE9A41065672 for ; Fri, 5 Feb 2010 19:26:07 +0000 (UTC) (envelope-from ddesimone@verio.net) Received: from relay2-bcrtfl2.verio.net (relay2-bcrtfl2.verio.net [131.103.218.177]) by mx1.freebsd.org (Postfix) with ESMTP id AD4A58FC0A for ; Fri, 5 Feb 2010 19:26:07 +0000 (UTC) Received: from iad-wprd-xchw01.corp.verio.net (iad-wprd-xchw01.corp.verio.net [198.87.7.164]) by relay2-bcrtfl2.verio.net (Postfix) with ESMTP id E613D1FF1001 for ; Fri, 5 Feb 2010 14:26:06 -0500 (EST) thread-index: AcqmmRA61b5Xl/1eSgmkB4DF+frgtg== Received: from dllstx1-8sst9f1.corp.verio.net ([10.144.0.33]) by iad-wprd-xchw01.corp.verio.net over TLS secured channel with Microsoft SMTPSVC(6.0.3790.3959); Fri, 5 Feb 2010 14:26:05 -0500 Received: by dllstx1-8sst9f1.corp.verio.net (sSMTP sendmail emulation); Fri, 05 Feb 2010 13:26:04 +0000 Content-Transfer-Encoding: 7bit Date: Fri, 5 Feb 2010 13:26:04 -0600 From: "David DeSimone" Content-Class: urn:content-classes:message Importance: normal Priority: normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.4325 To: Message-ID: <20100205192604.GK5172@verio.net> Mail-Followup-To: freebsd-pf@freebsd.org References: <20100205123254.GN11310@obspm.fr> <4B6C157F.2080301@gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Disposition: inline In-Reply-To: <4B6C157F.2080301@gmail.com> Precedence: bulk User-Agent: Mutt/1.5.18 (2008-05-17) X-OriginalArrivalTime: 05 Feb 2010 19:26:05.0520 (UTC) FILETIME=[0F965D00:01CAA699] Subject: Re: How make the route-to working ? X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 05 Feb 2010 19:26:07 -0000 Stefan wrote: > > Pf doesn't seem to be able to route packets on the outbound interface. > Therefore you have to always put the route-to statements on "pass in > on..." rules. What you'd want to use for received traffic is "pass in" rules that make use of "reply-to". -- David DeSimone == Network Admin == fox@verio.net "I don't like spinach, and I'm glad I don't, because if I liked it I'd eat it, and I just hate it." -- Clarence Darrow This email message is intended for the use of the person to whom it has been sent, and may contain information that is confidential or legally protected. If you are not the intended recipient or have received this message in error, you are not authorized to copy, distribute, or otherwise use this message or its attachments. Please notify the sender immediately by return e-mail and permanently delete this message and any attachments. Verio, Inc. makes no warranty that this email is error or virus free. Thank you.