On Tue, Dec 22, 2009 at 04:29:32PM -0500, stan wrote:
> I have a pair of redundandt fiirewalls (4.6). Eacg machine has 3
> interfaces, bge0 to the outside, em0, to the inside, and em1 for pfsync. I
> have the following in /etc/opsf.conf
>
>
> # $OpenBSD: ospfd.conf,v 1.2 2005/02/06 20:07:09 norby Exp $
>
>
> # global configuration
> router-id 10.209.142.154
> redistribute connected
>
> # areas
> area 0.0.0.120 {
> interface bge0 {
> auth-type none
> }
> interface em0 {
> passive
> auth-type none
> }
> }
>
> But the systems are advertising a route to the IP network that is for
> pfsync. How can I fix this?
>
If you just have these three connected networks just remove the
"redistribute connected". Else you could try to add "no redistribute X.Y.Z.W/L"
before the "redistribute connected" line.
--
:wq Claudio
