CB But the real question I've is why do you need that.
CB You can just do the opposite table:
CB table x { 192.168.0.0/16 172.16.0.0/12 10.0.0.0/8}
CB And then use the table in negative rules, like:
CB pass in from !x
hmm, yes, it's better idea.
Hello,
I recently upgraded to 3.5 and ended up having to start over from scratch.
Anyway, I have two interface, one doing a connection to the network, one
doing NAT to the the LAN. The only thing on the LAN I need access to
from the outside is an SSH server at 192.168.1.160.
I can't the rdr to
Fisher, James L. wrote:
In /etc/rc.conf, did you change pf=NO to pf=YES (and reboot)?
Can anyone clue me in?
Well, that was a good guess, and for the record, I spent a couple of
hours with net.ip.forwarding = 0. The problem ended up being linked to
the DHCP server misconfiguration. I
I have been given this as a spec for the network layout:
---
| 217.205.140.x/32
+---+
|netgear adsl router|
+-+-+
|
I am currently looking at purchasing some embedded hardware to build a
little firewall for my cable connection (3Mbps downstream/256Kbps up) to
run pf, altq, IPsec (vpn endpoint), multiple vLANs, DHCP, and DNS.
Currently, the plan is to initially load everything off the 256MB CF
card into a couple
Hey there
You would clone the ethernet card on the OpenBSD firewall to have the
extra addresses and then redirect based on the IP and the port number.
Have a look at http://openbsd.org/faq/pf/index.html and specifically
http://openbsd.org/faq/pf/nat.html .
I believe something like this will
