On Tue, 1 Dec 2015 18:24:18 +0800
Julian Elischer <jul...@freebsd.org> wrote:
> if you reload pf it has no effect?
> pf is the part of the picture I have no experience with so I'm
> naturally suspicious of it.
> have you tried a simple ipfw nat instead? just as a sanity check?
Well, I have zero experience with ipfw and this is production system with
quite complex pf setup. So I don't have enough courage to experiment much
there. But next time it happens, I'll try to reload pf rules, and also to
disable pf completely - it's acceptable for short period of time, and
we'll see if there still are any "private" packets on "public" interface.
Thanks for suggestions.
--
Dan
_______________________________________________
freebsd-net@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
