Hi,
I have a host with 2 external interfaces (pppoe0 and pppoe1 in this
case, they're ADSL lines). As such, I host
services behind them and want to be able for both IP addresses to be
used when talking to said service. Here's
a snippet of pf.conf with the relevant stuff:
rdr on pppoe0 inet proto tcp from any to (pppoe0) port 25 -> 192.168.0.50
rdr on pppoe1 inet proto tcp from any to (pppoe1) port 25 -> 192.168.0.50
pass in on pppoe0 reply-to { pppoe0 0.0.0.1 ) proto tcp to
192.168.0.50 port 25 flags S/SA synproxy state
pass in on pppoe1 reply-to { pppoe1 0.0.0.1 ) proto tcp to
192.168.0.50 port 25 flags S/SA synproxy state
Default gw is set to pppoe1's gateway.
The rules above.. I can telnet to port 25 on pppoe1's IP but not pppoe0's IP.
If I remove 'flags S/SA synproxy state' from the pass in on pppoe0
rule, I can telnet to pppoe0's IP just fine
and traffic flows.
Is synproxy only honoring the default gw? Can anyone duplicate this problem?
Thanks,
Tom
