login
Login
/
Register
Search
Search this site:
Forums
News
Blogs
Features
Site
Home
»
Mailing list archives
»
openbsd-misc
»
2009
»
December
»
4
Re: pf route-to doesn't work for me after upgrading to 4.6
view
thread
Previous message: [
thread
] [
date
] [
author
]
Next message: [
thread
] [
date
] [
author
]
[view in full thread]
From: Fred Crowson
Subject:
Re: pf route-to doesn't work for me after upgrading to 4.6
Date: Friday, December 4, 2009 - 8:46 am
On 12/4/09, Alexander Bochmann <ab@lists.gxis.de> wrote:
quoted text
> Hi, > > did anything change in regard to pf rules with the > route-to option in recent versions of OpenBSD? > > I've just reinstalled an old system that was running > OpenBSD 3.9 with 4.6, and gave it my old pf rulesets. > > There is a rule that is supposed to send all traffic > originating from a certain local network into a tunnel > instead of to the default gateway. Which it did with 3.9. > > Now it seems to do nothing - outgoing traffic just > follows the default route, regardless of the route-to > rule. > > It was basically something like this: > > pass in quick on $int_if route-to $vpn_if from $special_net \ > to ! <localnets> keep state > > (The relevant traffic comes in through $vpn_if by itself.) > > Also tried binding the rule on the external interface, > and using the route-to syntax with gateway address, > but that didn't work either. > > Alex. >
pf has virtually been rewritten in that time....
http://www.openbsd.org/cgi-bin/cvsweb/src/sys/net/pf.c
Previous message: [
thread
] [
date
] [
author
]
Next message: [
thread
] [
date
] [
author
]
Messages in current thread:
pf route-to doesn't work for me after upgrading to 4.6
, Alexander Bochmann
, (Fri Dec 4, 8:04 am)
Re: pf route-to doesn't work for me after upgrading to 4.6
, Mitja Muzenic
, (Fri Dec 4, 8:25 am)
Re: pf route-to doesn't work for me after upgrading to 4.6
, Fred Crowson
, (Fri Dec 4, 8:46 am)
Re: pf route-to doesn't work for me after upgrading to 4.6
, Alexander Bochmann
, (Fri Dec 4, 9:55 am)
Re: pf route-to doesn't work for me after upgrading to 4.6
, Jordi Espasa Clofent
, (Mon Dec 7, 2:32 am)
Navigation
Create content
Mailing list archives
Recent posts
Popular discussions
linux-kernel
:
Russell King
Re: ARM defconfig files
Jesse Barnes
Re: PCI MSI breaks when booting with nosmp
James Morris
Re: [AppArmor 01/41] Pass struct vfsmount to the inode_create LSM hook
Philip Langdale
[PATCH 2.6.19] mmc: Add support for SDHC cards (Take 4)
Oren Laadan
[PATCH v21 073/100] c/r: Add AF_UNIX support (v12)
git
:
Felipe Contreras
Re: [kernel.org users] [RFD] On deprecating "git-foo" for builtins
Paolo Ciarrocchi
Re: [kernel.org users] [RFD] On deprecating "git-foo" for builtins
Johannes Schindelin
[PATCH] fetch: refuse to fetch into the current branch in a non-bare repository
Johannes Schindelin
Re: [PATCH] Fix install-doc-quick target
Peter Oberndorfer
Subject: [PATCH] fix stg edit command
linux-netdev
:
Ursula Braun
[patch 2/8] [PATCH] af_iucv: sync sk shutdown flag if iucv path is quiesced
Andi Kleen
Re: RFC: Nagle latency tuning
David Miller
Re: [RFC 0/5] generic rx recycling
Gary Thomas
Re: Marvell 88E609x switch?
Chuck Lever
Re: [RFC] ipv6: Change %pI6 format to output compacted addresses?
git-commits-head
:
Linux Kernel Mailing List
New device ID for sc92031 [1088:2031]
Linux Kernel Mailing List
e1000e: Expose MDI-X status via ethtool change
Linux Kernel Mailing List
arm/imx/gpio: GPIO_INT_{HIGH,LOW}_LEV are not necessarily constant
Linux Kernel Mailing List
powerpc/kexec: Add support for FSL-BookE
Linux Kernel Mailing List
trivial: fix comment typo in fs/compat.c
openbsd-misc
:
Theo de Raadt
Re: RES: OpenBSD on IBM System X3550 7879
Bret S. Lambert
Re: any web management gui for pf ?
Rob Shepherd
x86 hardware for router system
Flickr Photo Map for iPad and iPhone
Thanks for the Great Launch of Flickr Photo Map for iPad + iPhone
Nick Holland
Re: Install OpenBSD from USB ?
Colocation donated by:
Syndicate
