Date: Fri, 18 Mar 2011 17:08:18 +0100 From: Thomas Steen Rasmussen <thomas@gibfest.dk> To: Melissa Jenkins <melissa-freebsdstable@littlebluecar.co.uk> Cc: freebsd-pf@freebsd.org Subject: Re: PFsync & RDR/NAT Message-ID: <4D838372.2060401@gibfest.dk> In-Reply-To: <9C34D3E1-5F82-461B-AD1D-9BD7402D794E@littlebluecar.co.uk> References: <20110131112244.839B610656A8@hub.freebsd.org> <9C34D3E1-5F82-461B-AD1D-9BD7402D794E@littlebluecar.co.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
On 18.03.2011 12:31, Melissa Jenkins wrote: > Hiya, > > I was wondering if anybody knew how to stop the states generated by RDR and NAT rules from synchronising over PFSYNC? > > In particular I have an RDR for DNS traffic. The states this produces don't need to be synchronised between the two machines, but I can't figure out how to stop this. Adding the (no state) flags to the pass rule doesn't stop the states from being synchronised. Hello, You need the no-sync keyword on the state options, check man pf.conf(5). Best regards Thomas Steen Rasmussen
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4D838372.2060401>