On Wed, Aug 19, 2015 at 6:46 PM, Stuart Henderson wrote:
> It's not *that* complex. It may be easier with tag rather than received-on
> and if there's any confusion about rule ordering it may be easier to use
> 'quick' and place them at the top of the ruleset.
>
> pass in quick proto tcp to $ext_i
On 2015-08-19, Sonic wrote:
> On Fri, Aug 14, 2015 at 3:20 AM, Stuart Henderson
> wrote:
>> Config for this would be fairly similar to this example:
>> http://www.openbsd.org/faq/pf/rdr.html#rdrnat
>
> I'm guessing you mean this example (?).
>==
> With an
On Wed, Aug 19, 2015 at 12:53 PM, Giancarlo Razzolini
wrote:
> Just to be clear, your setup is something like this?:
>
> |GW | <- machine -> |OpenBSD| - > Internet
>
> So, when your connect using OpenBSD as the router, the packets get to the
> machine, but since the machine doesn't have a direct r
Em 19-08-2015 09:27, Sonic escreveu:
> I'm guessing you mean this example (?).
> ==
> With an additional NAT rule on the internal interface, the lacking
> source address translation described above can be achieved.
>
> pass in on $int_if proto tcp from $int_n
On Fri, Aug 14, 2015 at 3:20 AM, Stuart Henderson wrote:
> Config for this would be fairly similar to this example:
> http://www.openbsd.org/faq/pf/rdr.html#rdrnat
I'm guessing you mean this example (?).
==
With an additional NAT rule on the internal interf
On 2015-08-14, David Dahlberg wrote:
> Sounds like an typical use case for NAT to me (inbound nat-to).
Config for this would be fairly similar to this example:
http://www.openbsd.org/faq/pf/rdr.html#rdrnat
Am Donnerstag, den 13.08.2015, 22:10 -0400 schrieb Sonic:
> Problem is a device that, due to its limitations, must have a default
> gateway that is not the default gateway of the OpenBSD router (unlike
> the rest of the network) so I'm having difficulty connecting to it
> from the outside world.
H
7 matches
Mail list logo
