I've tried to avoid writing this, but I'm stumped. I've read the man pages, faq, googled websites and usenet, looked at examples and I don't know what I'm doing wrong.
Here is what I'm trying to do:
Openbsd 3.4 with pf firewall with 3 nics. Default deny policy in place. Using nat and rdr for machines behind the firewall on two segments.
I can access the web server in the dmz from the internet fine.
I can access the web server in the dmz from the internal lan using the private ip fine.
I can access the internet from the dmz and the internal lan.
I can't access the web server in the dmz from the internal lan using the internet ip.
So what should I setup to access the dmz from the internal lan via the internet ip / domain name?
If the PF example:
http://www.openbsd.org/faq/pf/queueing.html#example2
was complete, I think I would understand what I'm doing wrong.
If someone would be nice enough to tell/point point me in the right direction, I would be very thankful.
I'm not attaching my pf.conf since I don't think this post needs another 50+ lines. I'm just looking for the theory/example to pass traffic from the internal lan via the internet ip to the dmz. If you want to help me and see my pf.conf just email me and I'll send it.
Thanks in advance,
-Fred [EMAIL PROTECTED]
