Okay, I guess I should have tested for about 5 more minutes. In reality, the following lines in /etc/pf.conf make it work, and it's kind of messy from that stand point.
pf.conf ---------------------- binat on fxp0 from 66.151.57.231 to any -> 10.10.2.231 binat on fxp0 from 66.151.57.232 to any -> 10.10.2.232 binat on fxp1 from 66.151.57.231 to any -> 10.10.2.231 binat on fxp1 from 66.151.57.232 to any -> 10.10.2.232 binat on fxp0 from 10.10.2.231 to any -> 66.151.57.231 binat on fxp0 from 10.10.2.232 to any -> 66.151.57.232 binat on fxp1 from 10.10.2.231 to any -> 66.151.57.231 binat on fxp1 from 10.10.2.232 to any -> 66.151.57.232 ---------------------- I'm still looking at why it works, but for now it does work. I'm not sure what the impact on the system will be with that. As for each packet through, it seems to hit 6 of the 8 rules above. -- Greg Rumple [EMAIL PROTECTED]
