Hi,
Your network layout would help in this but anyway.
The carp on the external interface should be used to the external router
know what firewall to send your incoming packets, and the carp on the
internal interface to the same thing on you LAN.
You can check with route(8) what interface is being used to route your
packets, so you will know what interface the nat should run on pf, in my
machines i have used the nat on the external interface, so as they are
the route to the external world, but this was on OpenBSD, it should be
the same on FreeBSD.
HTH,
Vinicius
Rafael Aquino wrote:
Hi there,
I started to configure two firewall to work with carp+pfsync.
I got everything done and working, but it seems thant I can't make
nat on pf work properly.
Just to know: does nat on pf work fine when using carp?
Do I have to do the nat on the carp interface or on the physical
interface?
Thanks!
--
Rafael Mentz Aquino
BSDServer Ltda.
51 - 9847 8825
_______________________________________________
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
_______________________________________________
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
