-----Original Message-----
From: owner...@benzedrine.cx [mailto:owner...@benzedrine.cx] On Behalf
Of Stuart Henderson
Sent: Friday, November 16, 2012 12:39 AM
To: gpon...@spamcop.net; pf@benzedrine.cx
Subject: Re: Routing challenges with DHCP and static interfaces
The simplest way to do this is probably to use multiple route tables,
then you can use rtable in pf.conf instead of route-to.
www.openbsd.org/papers/eurobsd2012/phessler-rdomains/index.html
www.packetmischief.ca/2011/09/20/virtualizing-the-openbsd-routing-
table/
Thank you for making this suggestion. It was easy to get the basics
working and the pf.conf is simpler. This is quite a nice feature of
OpenBSD that deserves more airtime and documentation. The links were
good though. Especially the multiple caveats about needing the default
routes.
Teemu - very nice coding and good solutions to the problems. Thanks
for sharing. With the coming demise of the dhclient script, my guess
is that you will appreciate the rtable solution too.
Your 'pass in' rule won't match outgoing connections from the machine
itself.
Gack!
George
