Josh Smith wrote: > I have been running OpenBSD as my home "router" for a couple of years > now and everything has worked well thus far. However this evening I > added a second network interface to my router because I would like to > add some hosts for testing on a separate network segment and am > running into some difficulties. > > My network is configured as follows: > gem0 - DHCP address and link to internet > rl0 - 10.66.66.1/24 - original home network segment > rl1 - 10.66.67.1/24 - new test network segment > > from a host on the 10.66.66.1/24 network I am able to connect to > 10.66.67.1 but no other host on that network segment. However I am > able to connect to any host on this segment from my openbsd router. >
The one thing I tend to overlook is enabling IP forwarding: $ sysctl |grep forward net.inet.ip.forwarding=1 net.inet.ip.mforwarding=0 net.inet6.ip6.forwarding=1 net.inet6.ip6.mforwarding=0 Otherwise your best friends are probably ping and tcpdump ... -ipflog0 to see if PF is blocking anything.
