You need:
- A default route:
Code:
$ netstat -rn -f inet
Routing tables
Internet:
Destination Gateway Flags Refs Use Mtu Prio Iface
default 192.168.222.10 UGS 8 14022 - 8 re0
127/8 127.0.0.1 UGRS 0 0 33152 8 lo0
127.0.0.1 127.0.0.1 UH 3 2380 33152 4 lo0
192.168.222/24 link#1 UC 2 0 - 4 re0
192.168.222.10 00:10:5a:14:52:a5 UHLc 1 1004 - 4 re0
192.168.222.20 127.0.0.1 UG 0 0 33152 56 lo0
192.168.222.200 link#1 UHLc 1 3 - 4 re0
224/4 127.0.0.1 URS 0 0 33152 8 lo0
- A valid /etc/resolv.conf
Code:
search utp.xnet
nameserver 192.168.222.10
lookup file bind
In my case the nameserver and default route happens to be the same, because I run a nameserver on my OBSD firewall. Usually these are different.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
|