On 8/2/05, quel <[EMAIL PROTECTED]> wrote:
> I am trying to find the appropriate way to set the external ip used. I
> have a user who wants their outbound traffic to all go out their ip. This
> way they have their reverse appropriate.
>
> ifconfig snip:
> inet 69.13.34.82 netmask 0xfffffff0 broadcast 69.13.34.95
> inet 69.13.34.83 netmask 0xfffffff0 broadcast 69.13.34.95
> inet 69.13.34.94 netmask 0xfffffff0 broadcast 69.13.34.95
>
> .82 is the base ip and .94 is the specific alias in question
>
> route-to doesn't work because the gateway is the same for all the ips
>
> Perhaps something like the following, except you can't specify user
> nat on $ext_if inet from user aramith to any -> 69.13.34.94
>
> I've searched google and the lists to no avail. I presume there is a
> trivial way to accomplish this.
You can solve this by using tags:
nat on $ext_if inet from any to any tagged aramith -> 69.13.34.94
. . .
pass out from any to any user aramith tag aramith
I just happen to have read the section on tagging in "Building
firewalls" last weekend.
Kevin Kadow
