hi, On Tue, Oct 26, 2010 at 10:54:59PM +0200, Leon Me?ner wrote: > i'm new here so please excuse if this is the wrong list or so. > I do have a problem with getting my relayd to work on an OpenBSD 4.7 > bridge thats using pf as a firewall. My configuration is the following: > ... > As you can see in below tcpdump the dst-mac does not change with the > redirection. So the packet gets routed to the wrong switch port. >
it is an "unsupported mode of operation". rdr-to will not update the dstmac on a bridge and it doesn't do a route lookup to get it because we cannot guarantee that there is an arp entry for the updated dstip address. this would even be impossible on a fully transparent bridge without configured ip addresses where we don't have a way to resolve the dstmac/dstip at all. rdr-to could theoretically try to do a lookup for this ip and only update the dstmac if an entry is found but this is tricky and somewhat whacky and not intended. reyk
