--On 25 August 2005 09:04 +0100, Helio Santana wrote:
My VPN works fine with pf disabled, but when I enable PF... this is the response PING 192.168.6.102 (192.168.6.102): 56 data bytes ping: sendto: No route to host
That either means 'No route to host' or 'blocked by PF'. Since you turned off PF to test and that allowed the traffic, obviously it's being blocked by PF. So you just need to debug your ruleset. I'd start by changing 'block out' to 'block out log' and monitor pflog0 (sudo tcpdump -netttipflog0) to see where packets are being dropped. You might like to add some 'keep state' to your later rules.
