On 11/03/2016 03:36 PM, Stefan Sperling wrote: > On Thu, Nov 03, 2016 at 03:17:40PM -0400, Marina Brown wrote: >> Hi All: >> >> I have been trying to create an nppp connection across my property - >> about 100M for one of my friends who lives here. He wants less security >> than i like behind my firewall. I have not been able to get OpenBSD to >> route his connection out of the network. Here are my settings. > >> # NAT Rule to translate from internal to External NET >> pass out on em0 inet from em1:network to any nat-to (em0) > > You're using NAT when passing out on em0 here, and... > >> external = em0 > >> pass out quick on $external from 10.0.0.103/32 to any > > ... my guess is that you're missing 'nat-to ($external)' here ^ >
Thanks - is there a way to exclude the npppd users from the nat altogether. That is the reason for the excersize. If i put him behind the nat we are right where we started. He runs games that don't play well with strict NAT settings and i don't want the rest of my network exposed to reduced security. I thought he would be on pppx0. Is there a way to do this. --- Marina Brown
signature.asc
Description: OpenPGP digital signature
