From owner-freebsd-questions@FreeBSD.ORG Mon Dec 10 10:44:32 2007 Return-Path: Delivered-To: questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5FC2016A418 for ; Mon, 10 Dec 2007 10:44:32 +0000 (UTC) (envelope-from sh1nny_kn1ght@yahoo.com) Received: from n9a.bullet.ukl.yahoo.com (n9a.bullet.ukl.yahoo.com [217.146.183.157]) by mx1.freebsd.org (Postfix) with SMTP id DDF0413C447 for ; Mon, 10 Dec 2007 10:44:31 +0000 (UTC) (envelope-from sh1nny_kn1ght@yahoo.com) Received: from [217.12.4.215] by n9.bullet.ukl.yahoo.com with NNFMP; 10 Dec 2007 10:31:36 -0000 Received: from [216.252.122.218] by t2.bullet.ukl.yahoo.com with NNFMP; 10 Dec 2007 10:31:36 -0000 Received: from [69.147.65.152] by t3.bullet.sp1.yahoo.com with NNFMP; 10 Dec 2007 10:31:36 -0000 Received: from [127.0.0.1] by omp400.mail.sp1.yahoo.com with NNFMP; 10 Dec 2007 10:31:36 -0000 X-Yahoo-Newman-Property: ymail-3 X-Yahoo-Newman-Id: 230794.32894.bm@omp400.mail.sp1.yahoo.com Received: (qmail 83791 invoked by uid 60001); 10 Dec 2007 10:24:56 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=X-YMail-OSG:Received:Date:From:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding:Message-ID; b=eAj6oD0YEtJWr7Ezokd0dF0Jo01OFyfuRZGkUSo29JSoT2mvc2zc2p7a+CrC64FTN17sBHc4EzrWV+EEShP08R/Rz4U32krInUZ/JsyJrm+UuMlwKcPonOcZRrmuaaK9ZcaEEh1bZ1rZgtbdymeWHPnE/nBHZzpdqatIjBofpS0=; X-YMail-OSG: OZ91XYIVM1lBGkFn8kT7_zilxRTeEWzBeN9zpRjctmUBIba4wtTyWiJuJByCm0lvk8KMFouUI9kV1f_eRFURGYOMijDIACxCPGvR Received: from [41.219.192.91] by web44810.mail.sp1.yahoo.com via HTTP; Mon, 10 Dec 2007 02:24:55 PST Date: Mon, 10 Dec 2007 02:24:55 -0800 (PST) From: shinny knight To: Michael Smith , Erik Norgaard In-Reply-To: <2C799BA1-729E-4990-A80F-1C840AD53D9B@adhost.com> MIME-Version: 1.0 Message-ID: <979954.82929.qm@web44810.mail.sp1.yahoo.com> Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: questions@freebsd.org Subject: Re: Problem with NAT/RDR in PF X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Dec 2007 10:44:32 -0000 Michael Smith wrote: On Dec 9, 2007, at 3:34 PM, Erik Norgaard wrote: > Michael Smith wrote: >> Hello All: >> I am trying to configure a round-robin group of Name Servers that >> respond on to and from a single address. >> I want the following to occur: >> 1) DNS query from 10.211.128.1 to 10.212.1.1 is redirected to a >> pool of name servers >> 2) One of the name servers responds to the query >> 3) The response shows a source address of 10.212.1.1, not the >> actual name server > > I know this does not answer your question, but, what's the point? > DNS isn't exactly the kind of task that knocks over a server. If you > want redundancy, then the correct way to do it is to add NS entries > to your zone files. > > I simply let my register transfer the zone file daily, works fine. > If you need to update the zone file regularly just reduce the max > age of the zone. Hello Erik: Well, aside from doing a *lot* of queries, it's nice to have a single IP address fronting a set of servers so I can pull one out for maintenance at any time and it doesn't affect name resolution for the clients. Mike _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscribe@freebsd.org Hello Mike, If I understand correctly your environment I think you should change the NAT rule from: nat on $vlan821_if from $nr_net to $mail_net -> 10.212.1.1 to: nat on $vlan6_if from $nr_net to $mail_net -> 10.212.1.1 Let us know if this is solving the issue. BR, Catalin --------------------------------- Looking for last minute shopping deals? Find them fast with Yahoo! Search.