Hey all, I just installed a 3rd nic into my OBSD (3.4 CD) system, it's
hooked up to the campus network for routing of campus traffic, all of the
rest of the traffic should go through my cable modem. I will eventually
route some smtp traffic out via campus too, however now the box doesn't
route anything from my local network out via that interface:
Below is the relevent pf.conf file:
internal_net="192.168.1.0/24"
int_if="em0"
rl0_tcpports="any"
int_if="em0"
ext_if="rl0"
rl1_tcpports="any"
uci_if="rl1"
cox_gw = "68.106.218.1"
table <UCI> { 128.195.0.0/16, 128.200.0.0/16 } UCI_gw= "128.195.88.1"
scrub in all
altq on $ext_if priq bandwidth 4Mb queue { q_pri, q_def } queue q_pri
priority 7 queue q_def priority 1 priq(default)
nat on rl0 from $internal_net to !$internal_net -> (rl0)
nat on rl1 from $internal_net to !$internal_net -> (rl1)
pass out on $ext_if proto tcp from $ext_if to any flags S/SA \
keep state queue (q_def, q_pri)
pass in on $ext_if proto tcp from any to $ext_if flags S/SA \
keep state queue (q_def, q_pri)
pass out on rl1 all #(no point in filtering it since nothing should use it
unless I tell it to)
pass in on $int_if route-to { ($ext_if $cox_gw) } from $internal_net to
!<UCI> keep state
pass in on $int_if route-to { ($uci_if $UCI_gw) } from $internal_net to
<UCI> keep state
-----------------------------------
Cheers!
Ben
