On 2010-03-17, Daniel Melameth <dan...@melameth.com> wrote: > On a 4.6 system, I'm seeing something that I believe to be wrong. When > sourcing packets from a specific IP, the traffic is being (incorrectly?) > routed out the wrong interface. In this case, packets sourced via vr2's IP > are being sent out vr1. While this doesn't happen all the time, it happens > enough to be a problem. pf is not being used to route packets. Details:
that's normal/expected behaviour; the route (interface/nexthop) chosen depends only on the destination address. you can force certain packets to be routed via other locations based on other characteristics (addresses/port/tos/...) using pf (see e.g. route-to/reply-to/rtable).
