DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD General

OpenBSD General Other questions regarding OpenBSD which do not fit in any of the categories below.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 29th October 2008
SystemDog SystemDog is offline
New User
 
Join Date: Oct 2008
Posts: 1
Thanked 0 Times in 0 Posts
Question trouble with binat routing

Greetings,

I am moving co-location facilities and I would like to configure an openbsd router to forward 30 public IP's to the new co-lo facility until such time as the DNS entries propogate across the internet.


my binat rules look like this

binat log on dc0 from 209.x.x.x to any -> 24.x.x.x

where the 24.x.x.x address is the current IP
and 209.x.x.x is the new IP

should this not work?
pf.log indicates that there are matches to the binat rule however
when I open a browser to 24.x.x.x I do not see the webpage on 209.x.x.x



Any help would be greatly appreciated

Cheers
Reply With Quote
  #2   (View Single Post)  
Old 21st December 2009
DaChoZenOne DaChoZenOne is offline
New User
 
Join Date: Dec 2009
Location: Belgium
Posts: 2
Thanked 0 Times in 0 Posts
Default

Hi SystemDog,

Giving little information causes big assumptions ;-)
You don't want to wait for DNS propagation and redirect all requests to new ipaddresses? I suppose you want to "forward" all requests coming from the Internet to the "old" ipaddresses to the "new" ipaddresses on a different location?
The way I see it is:

1. requests from Internet to "old" ipaddress are received by the OpenBSD firewall on the old location.
2. PF should redirect these requests to the new ipaddress on the new location
3. The server with the new ipaddress responds to the OpenBSD firewall on th eold location
4. PF should redirect the replies back to the requesting "client" on the Internet.

So the OpenBSD PF firewall should NAT all requests it forwards to the new destinations as if they were initiated by the firewall itself in order to get the replies.

Is this the way you want to do it?
Reply With Quote
  #3   (View Single Post)  
Old 21st December 2009
DaChoZenOne DaChoZenOne is offline
New User
 
Join Date: Dec 2009
Location: Belgium
Posts: 2
Thanked 0 Times in 0 Posts
Default

oops, didn't see this tread was so old ....
Reply With Quote
  #4   (View Single Post)  
Old 21st December 2009
There0 There0 is offline
./dev/null
 
Join Date: Jul 2008
Posts: 169
Thanked 10 Times in 10 Posts
Default

I did but i repsonded to you anyways
__________________
The more you learn, the more you realize how little you know ....
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Loose UDP routing? spiller37 OpenBSD Security 4 31st July 2009 11:10 PM
double nat routing giagni General software and network 5 22nd May 2009 07:10 PM
Firewall routing Magoo FreeBSD General 9 4th November 2008 04:39 PM
Routing and routing some more! Weaseal FreeBSD General 1 19th August 2008 01:39 PM
OpenBSD and routing cchapman OpenBSD General 5 25th July 2008 05:55 PM


All times are GMT. The time now is 04:18 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick