Well... this actually works:
----
rdr on $ext_if proto {udp tcp} from any to DNS2_IP port 53 -> DNS1_IP
nat on $ext_if proto {tcp,udp} from any to DNS1_IP port 53 -> $ext_if
----But the man pf.conf says: ------ Redirections cannot reflect packets back through the interface they arrive on, they can only be redirected to hosts connected to different interfaces or to the firewall itself. ------ The rdr rule above seem to be reflecting packets on $ext_if, since DNS1_IP is an address on the internet... What am I missing here? Cheers Karl O. Pinc wrote: > >> Gustavo A. Baratto wrote: >> .. >> > FW2 is ready, and the IP for DNS2 is already assigned... So, while >> > DNS2 server is not ready, is it possible to setup FW2, so DNS >> queries >> > from the external world can be redirected to DNS1? > > How about a really simple bind config that uses FORWARD to > send all queries to dns1? > > Karl <[EMAIL PROTECTED]> > Free Software: "You don't pay back, you pay forward." > -- Robert A. Heinlein >
