View Single Post
  #8   (View Single Post)  
Old 30th September 2013
J65nko J65nko is offline
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 3,784

@12 pass out quick all flags S/SA
  [ Evaluations: 469989    Packets: 18797     Bytes: 1269590     States: 9     ]
  [ Inserted: uid 0 pid 25829 State Creations: 1419  ]

@14 pass out on vic0 inet from to any flags S/SA nat-to (vic0:1) round-robin
  [ Evaluations: 468570    Packets: 0         Bytes: 0           States: 0     ]
Rule nr 12 uses quick so your NAT rule nr 14 is never used/applied to the outgoing packets. So please try the match rule that I suggested, as the first rule
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote