On Thu, Jun 26, 2014 at 07:00:22PM +0900, Tuyosi Takesima wrote: > thanks for your advise > I write down more detail . > IN case of Debian , regardless security > > internet > | > router > 192:168.0.1 > | > 192.168.0.x > debian firewall :udhcpd&iptables > 192.168.11.1 > | iptables -t nat -P PREROUTING ACCEPT > | iptables -t nat -P POSTROUTING ACCEPT > | > | > | > 192.168.11.y > linux puppy > > puppy can access intenet by debian's iptables(like pf). > I want to do same thing by openbsd . > But nat-to is forbidden to private address. > It is embarassing .
Your conlusion is wrong. OpenBSD can do nat to any adress, if it is available on the interface.
