My OpenBSD 4.6 current firewall is currently designed to service
three internal networks, 192.168.0.0/24, 192.168.1.0/24,
192.168.2.0/24. I have assigned the group external to my connection
to my isp.
Using the following, I'm able to have internal connections to use
network address translation with the outside world.
table <mynetwork> {192.168.0.0/24, 192.168.1.0/24, 192.168.2.0/24}
match out out on external from <sunnydale> nat-to (external)
This works, however, when I do a sudo pfctl -s rules the match rule
is displayed as
match out on external from <mynetwork> to any nat-to (external) round-robin
Should round-robin be showing up in the rule?
Anathae
