load balancing and bridging ath0 with re0
Reinhold
freebsd at violetlan.net
Mon Apr 28 17:56:03 UTC 2008
On Mon, April 28, 2008 12:10, Reinhold wrote:
> On Mon, April 28, 2008 09:35, Jeremy Chadwick wrote:
>
>> On Mon, Apr 28, 2008 at 08:57:06AM +0100, Reinhold wrote:
>>
>>
>>> I'm having a bit of problem with getting my wlan to access the lan. I
>>> have created a bridge and its working in that both wlan and lan can
>>> access the internet perfectly well but they can't see each other.
>>> When I
>>> disable pf then they can access each other. The problem is that I'm
>>> doing load-balancing so when I disable pf my internet stops working.
>>
>> Have you tried tinkering with the sysctls mentioned in bridge(4)?
>> There
>> are even more available on RELENG_7, in the case you're using something
>> older.
>>
> Hi
>
>
> I forgot to mention that I'm using RELENG_7_0
>
>
> I have played with sysctl here is what are now
> # sysctl net.link.bridge
> net.link.bridge.ipfw: 0
> net.link.bridge.log_stp: 0
> net.link.bridge.pfil_local_phys: 0
> net.link.bridge.pfil_member: 1
> net.link.bridge.pfil_bridge: 1
> net.link.bridge.ipfw_arp: 0
> net.link.bridge.pfil_onlyip: 0
>
>
> I've changed net.link.bridge.pfil_onlyip from 1 to 0 with no affect and I
> tried net.link.bridge.pfil_local_phys 0 to 1 but then all access to the
> internet stopped so I had to change it back to 0
>
>
woot I got it working
All I added was
# Make wlan talk to lan
pass quick on $int_lan from any to any keep state
pass quick on $int_wlan from any to any keep state
\o/ now I can get a good nights rest :-)
More information about the freebsd-pf
mailing list