Giancarlo Razzolini wrote:
>
> Hi,
>
> I was short on time to write the rule that time, but basically, your
> rdr is right. All you need is to edit you pass rule and add something
> like this: reply-to ($isp2_iface $isp2_gw). So, your complete rule might
> look like this:
>
> pass in on $isp2_iface reply-to ($isp2_iface $isp2_gw) from any to
> $srv_web_001 port http keep state
>
> Wish you luck,
>
> --
> Giancarlo Razzolini
> Linux User 172199
> Red Hat Certified Engineer no:804006389722501
> Moleque Sem Conteudo Numero #002
> Slackware Current
> OpenBSD Stable
> Ubuntu 7.04 Feisty Fawn
> Snike Tecnologia em Informatica
> 4386 2A6F FFD4 4D5F 5842 6EA0 7ABE BBAB 9C0E 6B85
>
> [demime 1.01d removed an attachment of type application/pgp-signature
> which had a name of signature.asc]
>
Hello Giancarlo,
Many thanks for all your help. You rock it!
The rule you suggested it's working perfectly with a minimal change.
This is the definitively used rule set, in case it may help someone else.
-----------------------------------------------------------
###############################################################################
## FILTER: Routing outgoing to ISP2
###############################################################################
pass in quick on $dmz_if from $dmz_net to $lan_net
pass in quick on $dmz_if route-to ($isp2_if $isp2_gw) \
from $dmz_net to !$lan_net
pass in on $isp2_if reply-to ($isp2_if $isp2_gw) proto {tcp udp} \
from any to $srv_web_001 port {http https}
-----------------------------------------------------------
Once again, thanks you Giancarlo.
--
View this message in context:
http://www.nabble.com/select-outgoing-route-depending-on-souce-interface-%28net%29-tp15863445p15891262.html
Sent from the openbsd user - misc mailing list archive at Nabble.com.
