DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

 
 
Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #1   (View Single Post)  
Old 6th December 2010
Monkey Monkey is offline
New User
 
Join Date: Dec 2009
Posts: 7
Thanked 0 Times in 0 Posts
Unhappy Help with OpenBSD 4.8 and NAT

Hi everybody,

I decided to upgrade my Openbsd 4.5 to 4.8, I use it only to split my internet connection using NAT. In 4.5 everything is working fine, but in version 4.8 they changed the syntax for the NAT rules in pf.conf. Here is my working 4.5 pf.conf:

Code:
# cat pf.conf

int_if="hme0"
ext_if="pppoe0"

set block-policy return
set loginterface $ext_if

set skip on lo

match on pppoe0 scrub (max-mss 1440)

nat on $ext_if from !($ext_if) to any -> ($ext_if)
I read the man pages for pf.conf and accordingly converted my ruleset to:

Code:
ext_if="pppoe0"
int_if="xl1"

set block-policy return
set loginterface $ext_if

set skip on lo

match on pppoe0 scrub (max-mss 1440)

match out on $ext_if from !($ext_if) nat-to ($ext_if)
But when I try go access the internet from another computer it doesn't work... I tried a few variant of the NAT rule and none of them worked, I also tried them on OpenBSD 4.7 and 4.8, it didn't worked in either version... Anybody have an idea of what might be the problem?

Thanks in advance
Reply With Quote
 

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 01:00 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick