Sorry, I haven't post all of pf.conf. I 've already enable gatewaying and NAT rule on my firewall. If I allow all traffic pass the pf (pass all). All connection work well.
Thanks, Thitiporn On 3/31/06, Peter N. M. Hansteen <[EMAIL PROTECTED]> wrote: > IMS <[EMAIL PROTECTED]> writes: > > > How to write rule to allow private network to access external website..??.. > > Assuming your you have posted your complete rule set, I see at least two > things you would want to look into: > > - you are using nonrouteable addresses on your local nets. You probably > want a NAT rule in your config as well. > > - have you enabled gatewaying (sysctl net.inet.ip.forwarding=1)? > > -- > Peter N. M. Hansteen, member of the first RFC 1149 implementation team > http://www.blug.linux.no/rfc1149/ http://www.datadok.no/ http://www.nuug.no/ > "First, we kill all the spammers" The Usenet Bard, "Twice-forwarded tales" > 20:11:56 delilah spamd[26905]: 146.151.48.74: disconnected after 36099 > seconds. > >
