Date: Thu, 21 Oct 2004 15:20:25 +0200 From: Matteo Riondato <rionda@gufi.org> To: freebsd-current@freebsd.org Subject: Is PF nat broken? Message-ID: <1098364825.16153.30.camel@kaiser.sig11.org>
next in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] I switched from PPP -nat + IPFW to PF for nat and packet filtering. It seems to me that nat does not work with pf: This are my rules in /etc/pf.conf : ext_if = "tun0" wifi_if = "rl0" eth_if = "fxp1" wifi_net = "192.168.1.0/27" eth_net = "192.168.0.0/29" [snip] nat on $ext_if from $wifi_net to any -> ($ext_if) nat on $ext_if from $eth_net to any -> ($ext_if) [snip filtering rules] In rc.conf I have gateway_enable="YES" ppp_enable="YES" ppp_mode="ddial" ppp_nat="NO" ppp_profile="eth" pf_enable="YES" pf_rules="/etc/pf.conf" [snip] Please note that I'm using pf.ko, not in-kernel support. There isn't a "nat enable yes" line in /etc/ppp/ppp.conf Any help will be appreciated. Best Regards -- Rionda aka Matteo Riondato GUFI Staff Member (http://www.gufi.org) FreeSBIE Developer (http://www.freesbie.org) BSD-FAQ-it Main Developer (http://utenti.gufi.org/~rionda) Sent from: kaiser.sig11.org running FreeBSD-6.0-CURRENT [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.5 (FreeBSD) iD8DBQBBd7eZ2Mp4pR7Fa+wRAgvfAJ9ZN6vhzopTU2i6QdtUttNEZ8UOpQCgk/Uv V27AStF8DgrIh6+EDPEvKH4= =hPWb -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1098364825.16153.30.camel>