"Nat pass" not working in pf?
Artemiev Igor
ai at bmc.brk.ru
Tue Aug 9 04:51:00 GMT 2005
nat pass on fxp0 proto tcp from (ed0:network) to any -> (fxp0:0) static-port
Still, filtering rules are still being used. I create rule:
"pass in log quick on ed0 from (ed0:network) to any keep-state allow-opts
By pfctl -s state I can see, that state for packet is created, but incoming
packets are not using it, because they are being dropped on external interface
fxp0, despite the "set state-policy floating".
--
iprefetch ai
More information about the freebsd-current
mailing list