You're right on this, the filtering rules aren't written with the brackets. But isn't pf routing the packets to an interface instead of an IP address.
Thanks a lot Martin -----Message d'origine----- De : Erik Norgaard [mailto:[EMAIL PROTECTED] Envoyé : 18 octobre 2006 12:41 À : Martin Turgeon Cc : [email protected]; [EMAIL PROTECTED]; [email protected] Objet : Re: Routing with external interface doesn't work after a while Martin Turgeon wrote: > The NAT rules are already written that way: > > nat on $wan_if tag LAN_WAN_NAT tagged LAN_WAN -> ($wan_if) > nat on $wan_if tag WLS_WAN_NAT tagged WLS_WAN -> ($wan_if) > nat on $wan_if tag AP_WAN_NAT tagged AP_WAN -> ($wan_if) > nat on $wan_if tag VPN_WAN_NAT tagged VPN_WAN -> ($wan_if) How are your tags created? If somewhere in the nat/tag/filtering process you've missed the dynamic update of the external ip it may fail there... Cheers, Erik -- Ph: +34.666334818 web: http://www.locolomo.org X.509 Certificate: http://www.locolomo.org/crt/8D03551FFCE04F0C.crt Key ID: 69:79:B8:2C:E3:8F:E7:BE:5D:C3:C3:B1:74:62:B8:3F:9F:1F:69:B9 _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "[EMAIL PROTECTED]"
