Giancarlo Razzolini wrote:
>
> Hi,
>
>I was short on time to write the rule that time, but basically, your
> rdr is right. All you need is to edit you pass rule and add something
> like this: reply-to ($isp2_iface $isp2_gw). So, your complete rule might
> look like this:
>
> pass in on $isp2
Jon Rubio escreveu:
>
>---
> 4.) Responses to incoming Web server (DMZ net) must be reply through ISP2
>(172.31.0.21 --> 172.31.0.254 --> 80.25.145.194 --> 80.25.145.193 -->
> ISP2).
>ERROR!! Packages are send back through
Giancarlo Razzolini wrote:
>
> Yep, you need a reply-to rule. I'll not write one here, but basically,
> you do the rdr rule for incoming traffic as you normally would. But in
> the pass rule, you say that this rule will reply-to, to the isp2. If you
> do not make a reply-to rule, the requests get
Giancarlo Razzolini wrote:
>
> Yep, you need a reply-to rule. I'll not write one here, but basically,
> you do the rdr rule for incoming traffic as you normally would. But in
> the pass rule, you say that this rule will reply-to, to the isp2. If you
> do not make a reply-to rule, the requests get
Jon Rubio escreveu:
> Giancarlo Razzolini wrote:
>>
>> Selective routing uses the route-to directive from pf. It's quite simple
>> to use and, to achieve what you want, a simple rule like this should
>> solve (the macros are wrong, was lazy to look them every time :):
>>
>> pass in on $dmz_if rout
Giancarlo Razzolini wrote:
>
>
> Selective routing uses the route-to directive from pf. It's quite simple
> to use and, to achieve what you want, a simple rule like this should
> solve (the macros are wrong, was lazy to look them every time :):
>
> pass in on $dmz_if route-to ($isp2_iface $ips2
Jon Rubio escreveu:
> Hello,
>
> IB4m a quite newbye on OpenBSD and need some help with routing dependent on
> the source network.
>
> This is the diagram of the scenary: (public IPs aren't the real ones)
>
>(ISP1) (ISP2)
> ADSL-DHCP
7 matches
Mail list logo
