Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #1   (View Single Post)  
Old 25th November 2012
latux latux is offline
New User
Join Date: Nov 2012
Posts: 2
Default pf.conf and nat

Hello Community,
i am a newbie with BSD and i try to understand how a system at work is running.
I have a "OpenBSD 4.5 GENERIC#1749 i386" to work.
This host is running as a firewall with 4 ethernet ports.
Now i have to realise a NAT between 2 networks: mgt_if and extra_if

#host on extra_if
#pool auf clients on mgt_if
table <client> const {,,,}
No host from "extra" should communicate with hosts on "mgt_if"
only "host1" can do it with the clients defined in the "<client>" table, realising ssh, vnc, snmtp (monitoring)

i try a lot of nat settings, but it´s not working:
nat on $mgt_if from $host1 to any -> ($mgt_if:0)
nat on $mgt_if from ($extra_if:0:network) to any -> ($mgt_if:0)
nat on $mgt_if inet from $host1 to any -> ($mgt_if:0)
nat on $mgt_if inet from ($extra_if:0:network) to any -> ($mgt_if:0)
nat on $mgt_if inet proto { tcp, udp } from $host to any -> ($mgt_if:0)
nat on $mgt_if inet proto { tcp, udp } from ($extra_if:0:network) to any -> ($mgt_if:0)
can someone help me?
thanks in advance
Reply With Quote

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Where should I put my config? "rc.conf" or "rc.conf.local"? fender0107401 OpenBSD General 2 2nd April 2012 02:53 AM
Help with pf.conf A_Sorenby OpenBSD Security 14 21st June 2011 09:52 PM
Pf.conf erict35 OpenBSD Security 1 30th January 2010 10:19 PM
pf.conf lumiwa FreeBSD Security 11 20th September 2008 01:01 AM
difference between rc.conf and loader.conf disappearedng FreeBSD General 5 3rd September 2008 05:54 AM

All times are GMT. The time now is 11:44 AM.

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2018, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick