GRE and PF problem

Alex Povolotsky tarkhil at
Wed Jul 13 15:50:48 GMT 2005


I'm using FreeBSD (5.3-RELEASE-p5) as internet access server, and I have 
to NAT GRE packets. I'm using pf.

The problem is that SOMETIMES PF fails to create proper rule using nat, 
while binat works fine.

Not only I do not want to expose Windows boxes (even if those addresses 
are firewalled), but it's also a terrible waste of real IPs.

Can anyone point me if I have incorrect PF config, or PF just work 
poorly with gre?


More information about the freebsd-net mailing list