On 1/6/2011 at 10:40 AM Mike. wrote:
|On 1/5/2011 at 2:56 PM Axton wrote:
|
||On Wed, Jan 5, 2011 at 10:14 AM, Mike. wrote:
||
||> On 1/4/2011 at 10:57 PM Josh Smith wrote:
||>
||> |
||> |pass in on $int_if0 # pass all incomming traffic on our internal
||> interface
||> |pass in on $int_if1 # pas
On 1/5/2011 at 2:56 PM Axton wrote:
|On Wed, Jan 5, 2011 at 10:14 AM, Mike. wrote:
|
|> On 1/4/2011 at 10:57 PM Josh Smith wrote:
|>
|> |
|> |pass in on $int_if0 # pass all incomming traffic on our internal
|> interface
|> |pass in on $int_if1 # pass all incomming traffic on our internal
|> inter
While we're piling on ...
I have three interfaces, vr0 is my internet (pppoe), vr1 and vr2 are
my internal networks.
This gives me a good mental picture ...
# packet filtering
block all
# pppoe0:network
pass out on pppoe0 inet from (pppoe0) to any
pass out on pppoe0 inet from vr1:network nat-t
On Wed, Jan 5, 2011 at 10:14 AM, Mike. wrote:
> On 1/4/2011 at 10:57 PM Josh Smith wrote:
>
> |
> |pass in on $int_if0 # pass all incomming traffic on our internal
> interface
> |pass in on $int_if1 # pass all incomming traffic on our internal
> interface from the test network
> =
>
On 1/4/2011 at 10:57 PM Josh Smith wrote:
|
|pass in on $int_if0 # pass all incomming traffic on our internal
interface
|pass in on $int_if1 # pass all incomming traffic on our internal
interface from the test network
=
I have two internal subnetworks, one for standard frames and
Josh Smith wrote:
> I have been running OpenBSD as my home "router" for a couple of years
> now and everything has worked well thus far. However this evening I
> added a second network interface to my router because I would like to
> add some hosts for testing on a separate network segment and am
Hi Josh,
I guess the problem is that everything matches your NAT rules.
Try adding something like this before the match rules for nat:
pass in quick on $int_if0 from 10.66.66.0/24 to 10.66.67.0/24
pass out quick on $int_if0 from 10.66.67.0/24 to 10.66.66.0/24
pass in quick on $int_if1 from 10.
Joshua,
I would like the two networks to be able to talk directly to each
other using plain old routing, however I would like to be able to
filter this traffic using PF in the future if I choose to, but the
only traffic that should be natted is from either of these networks
out to the internet.
Th
I have been running OpenBSD as my home "router" for a couple of years
now and everything has worked well thus far. However this evening I
added a second network interface to my router because I would like to
add some hosts for testing on a separate network segment and am
running into some difficul
9 matches
Mail list logo
