Hi folks, I found the routers section in the man page, and then also found this email.
https://marc.info/?l=openbsd-misc&m=125232531402942&w=2 I *think* I got it to work but I want to double check. Here is a summarization of what I did in Vmware. Client -> gateway(NAT) -> ISP1 Client -> gateway(NAT) -> ISP2 Gateway has the standard relayd.conf lines. table <gateways> { 10.0.3.10 ip ttl 1, 10.0.4.10 ip ttl 1 } router "uplinks" { route 0.0.0.0/0 forward to <gateways> check icmp } Gateway also has these pf.conf lines for NAT. ext_if1="em0" ext_if2="em1" int_if="em2" internal_net="192.0.2.0/24" match out on $ext_if1 from $internal_net to any nat-to ($ext_if1) match out on $ext_if2 from $internal_net to any nat-to ($ext_if2) pass out on {$ext_if1, $ext_if2} from $internal_net to any pass in on $int_if from $internal_net to any What I notice is that I can do this: 1) Client: start a ping 2) Gateway: disconnect the first interface 3) Client: ping stops working 4) Client: Control-C and do another ping, ping works 5) Gateway: re-connect the first one 6) Gateway: disconnect the second one 7) Client: ping stops working 8) Client: Control-C and do another ping, ping works Am I in the right ballpark of how this is supposed to be configured? Is there any way for the gateway to magically change the same connection/packets to the other interface when the first interface dies? Thanks for any help. V/r, Bryan
