I think the problem is that you only have one default gateway on this system, and that is on the first interface. So all traffic should be doing what it's doing- nothing's broken or misconfigured.
If this is the case, I would recommend PF NAT redirection outbound that sources the second interface's internal addressing to flow back out the second interface, if that hasn't been done already. In fact, if you still have it as-
nat on $ext2 from !($ext2) -> ($ext2:0)
then perhaps binat or an rdr would help?
__________________
Network Firefighter
|