Jesus Sanchez wrote:
quoted text
> Gregory Edigarov escribis:
>> Jesus Sanchez wrote:
>>> Hi, I'm using OpenBSD 4.2.
>>>
>>> I'm triying to get a very unsafe-simple ruleset to make a nat between a
>>> laptop and my OpenBSD box. From my OpenBSD box I have two nics:
>>>
>>> OpenBSD box:
>>> rl0 (witch gets a IP from dhcp and gets to the internet via ADSL)
>>> sk0 (directly connected to the laptop via one cable)
>>>
>>> I seted the int_if ip statically as 192.168.1.1 (the laptop have 
>>> asigned
>>> 192.168.1.2 and they see each other without problem, and I can do FTP
>>> transfers and stuff like that)
>>>
>>> I have set the sysctl net.inet.ip.forwarding=1
>>>
>>> my pf.conf  (very unsafe and very simple, only to try this)
>>> =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
>>>
>>> ext_if = "rl0"
>>> int_if = "sk0"
>>> localnetwork = "${int_if}:network"
>>>
>>> scrub in all
>>>
>>> nat on $ext_if from $localnetwork to any -> (ext_if)
>>>
>>> =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
>>>
>>> then I make on the laptop (wich uses rl0):
>>>
>>> ifconfig rl0 inet 192.168.1.2
>>>
>>> but in the laptop I don't have internet at all, it see the OpenBSD
>>> box as 192.168.1.1 but nothing more.
>>>
>>> What I'm doing wrong?
>>>
>>> Thanks for your time
>>> -Jesus
>>>
>>>
>> nat pass on $ext_if from $localnetwork to any -> (ext_if)
>>
>>
>> or, add these two lines to the end of your pf.conf:
>> block all
>> pass all
>>
> I tried that and still same thing. Nothing changes with theese rules.
>
are you sure your pf is enabled?
pfctl -e

-- 
With best regards,
	Gregory Edigarov