Let's try: pass in quick on <eth1> route-to (<gw1> <ip gw1>) from any to !<internal network> keep state pass in quick on <eth2> route-to (<gw2> <ip gw2>) from any to !<internal network> keep state
-- Gilberto Villani Brito System Administrator Londrina - PR Brazil gilbertovb(a)gmail.com On 12/02/2008, Andrea Brancatelli <[EMAIL PROTECTED]> wrote: > Hello everybody. > > I'm a newcomer to this list so please be kind with me. :-) > > I've read the archive to the list and googled a lot but haven't find any > real solution to my problem with multiple gateway on the same machine. > > A quick scenario. I have 2 HDSL routers connected to the internet. Both are > Natting traffic from the inside and virtual-serving traffic from their > public IP to a local network's ip. They are on different subnets and may > arrive on the same card or on different card, according to my needs. On the > server we have a Squid running on port 80 as a Web Accelerator toward a > server in the intranet. Nothing we care about right now. > > What I'd like to understand is if it's possible (and maybe someone of you > can give me some clues apart from linking > http://openbsd.org/faq/pf/pools.html http://openbsd.org/faq/pf/nat.html > http://openbsd.org/faq/pf/rdr.html that are interesting reads but seems of > no use to me in such situation) to do a "route-to" pf rule that can relate a > specific connection coming from Gateway 1 to IP 1 to go back to gateway 1 > and another one coming from Gateway 2 to IP 2 going back to gateway 2, > without messing up everything. > > I think it could be simple but I'm a total stupid when it comes to PF so if > any of you would mind spending a few minutes... > > Thanks a lot. > > > Andrea > >
