Re: Incoming packets arrives on an interface and outgoing packets takes another interface

2015-09-10 Thread jean-yves boisiaud
I will try. Thanks for your help. 2015-09-09 23:16 GMT+02:00 Giancarlo Razzolini : > Em 09-09-2015 07:11, jean-yves boisiaud escreveu: > > I resolved the problem with the reply-to pf directive. > If you enable multipath and add the default gateways, you can use a > reply-to for the interface onl

Re: Incoming packets arrives on an interface and outgoing packets takes another interface

2015-09-09 Thread Giancarlo Razzolini
Em 09-09-2015 07:11, jean-yves boisiaud escreveu: > I resolved the problem with the reply-to pf directive. If you enable multipath and add the default gateways, you can use a reply-to for the interface only, not needing to pass the gateway address. This solves both LAN connectivity and internet con

Re: Incoming packets arrives on an interface and outgoing packets takes another interface

2015-09-09 Thread Kapetanakis Giannis
On 09/09/15 15:39, jean-yves boisiaud wrote: the rule : pass in quick on em2 inet proto icmp from any to em2:network becomes : pass in quick on em2 inet proto icmp from any to em2:network \ reply-to (em2 $em2_gw) where $em2_gw is the IP of our provider's router. Just an addition in ca

Re: Incoming packets arrives on an interface and outgoing packets takes another interface

2015-09-09 Thread jean-yves boisiaud
the rule : pass in quick on em2 inet proto icmp from any to em2:network becomes : pass in quick on em2 inet proto icmp from any to em2:network \ reply-to (em2 $em2_gw) where $em2_gw is the IP of our provider's router. hope that helps. 2015-09-09 13:54 GMT+02:00 Marko Cupać : > On Wed,

Re: Incoming packets arrives on an interface and outgoing packets takes another interface

2015-09-09 Thread Marko Cupać
On Wed, 9 Sep 2015 12:11:38 +0200 jean-yves boisiaud wrote: > I resolved the problem with the reply-to pf directive. Hi, I'm struggling with the same problem as well. Could you please share relevant part of your ruleset? Thank you in advance, -- Before enlightenment - chop wood, draw water. A

Re: Incoming packets arrives on an interface and outgoing packets takes another interface

2015-09-09 Thread jean-yves boisiaud
I resolved the problem with the reply-to pf directive. Thanks to P. Lamaiziere 2015-09-08 12:16 GMT+02:00 jean-yves boisiaud < jean-yves.boisi...@alcor-consulting.fr>: > hello, > > I'm using OBSD 5.7 as a firewall with carp and pfsync, more ipsec VPN used > with sasyncd. > > I have two Internet

Incoming packets arrives on an interface and outgoing packets takes another interface

2015-09-08 Thread jean-yves boisiaud
hello, I'm using OBSD 5.7 as a firewall with carp and pfsync, more ipsec VPN used with sasyncd. I have two Internet interfaces, one is the default route (em1), the other is for legacy traffic (em2). I also have a DMZ/LANs interface (em0). Outgoing traffic from LANs (arriving on em0) to the Inter