I hope somebody here can help me with a PF/NAT problem I'm having. I'm
moving a machine of ours from OpenBSD 2.9 to 3.2. This was all working
with IPF running on the 2.9 install.
The machine in question (nat) is working as a front for a DNS(SEC)
server. It takes UDP or TCP packets to port 53
On Fri, Mar 07, 2003 at 11:45:16AM -0500, Pete Toscano wrote:
Anybody have any ideas? Am I using scrub incorrectly? Should I be
using scrub? Is there something else I'm doing wrong? Is there any
other potentially useful information I forgot to give?
Your ruleset looks fine, that's exactly
On Fri, Mar 07, 2003 at 03:27:06PM -0500, Pete Toscano wrote:
That's good to know. Would scrub in all work just as well as scrub
in on {$ExtIf, $IntIf} all fragment reassemble?
Yes, 'fragment reassemble' is the default, so both do the same thing
(unless you have additional interfaces that you
On Fri, 07 Mar 2003, Daniel Hartmeier wrote:
Your ruleset looks fine, that's exactly how it should work (rdr on
external, nat on internal, scrub on both).
That's good to know. Would scrub in all work just as well as scrub
in on {$ExtIf, $IntIf} all fragment reassemble?
It must be somehow
