On 2009-03-12, Hilco Wijbenga <hilco.wijbe...@gmail.com> wrote: >> That netmask would give you the range 192.168.0.0 - 192.168.255.255 on >> your external interface, and hence, overlapping your internal network. > > The netmask is 192.168.1.255 so I should be okay there.
that's an invalid netmask. do you mean 255.255.255.0? or not? > The problem is definitely with DHCP assigning a new IP address. I > checked and (as everybody here was already expecting) pf is still > using the same rules as before. > So apparently using ($ext_if) isn't working properly. the (iface) syntax works fine... please show pfctl -vsr and pfctl -vsn
