From owner-freebsd-pf@FreeBSD.ORG  Sat Nov  4 04:43:45 2006
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
X-Original-To: freebsd-pf@freebsd.org
Delivered-To: freebsd-pf@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 3397B16A40F
	for <freebsd-pf@freebsd.org>; Sat,  4 Nov 2006 04:43:45 +0000 (UTC)
	(envelope-from gururajts@gmail.com)
Received: from nf-out-0910.google.com (nf-out-0910.google.com [64.233.182.185])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 6987643D4C
	for <freebsd-pf@freebsd.org>; Sat,  4 Nov 2006 04:43:44 +0000 (GMT)
	(envelope-from gururajts@gmail.com)
Received: by nf-out-0910.google.com with SMTP id c31so1691275nfb
	for <freebsd-pf@freebsd.org>; Fri, 03 Nov 2006 20:43:43 -0800 (PST)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com;
	h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition;
	b=Ej1MwO1solJug9TBByz+2ajPJniYtIuaa6A7zoLS/K+HkmL+JkTaBWt+6QSr9VPBk4dBiz5XdHxlfJD3boCZgTALRSzm4UkneARy4SzaGLLBQWdGzqauDpPBYZ4qGNkqwblVkJh82D0UPTLm4UjZHqs8RXJSQAOUZjFSToa/OIE=
Received: by 10.78.41.7 with SMTP id o7mr519597huo.1162615423122;
	Fri, 03 Nov 2006 20:43:43 -0800 (PST)
Received: by 10.78.177.12 with HTTP; Fri, 3 Nov 2006 20:43:42 -0800 (PST)
Message-ID: <cfa417a0611032043i356d7bd5vebf2048105016752@mail.gmail.com>
Date: Sat, 4 Nov 2006 10:13:42 +0530
From: "Gururaj T.S." <gururajts@gmail.com>
To: freebsd-pf@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Subject: PF + Frickin problem
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Technical discussion and general questions about packet filter
	\(pf\)" <freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 04 Nov 2006 04:43:45 -0000

Hi all,

I run pf 1.0.1 on my freeBSD 6.1

I have configured the ip adderess as 192.168.1.33/24 primary IP and
192.168.1.230/32 as alias.

I run frickin in this box.

When I connect to a vpn server via frickin on the primary IP it works perfect.

But, when I connect to VPN to aliased IP (setting frickin to listen to
alias), it does not connect.

tcpdump result shows that the traffic goes out perfectly. The problem
lies in the reply. The reply comes back to the primary ip 192.168.1.33
instead of 192.168.1.230.

PF rules permit the traffic to this vpn server.

I am not able to figure out what is going wrong here. Could anyone
please help me to crack this problem?

Thanks.