From owner-freebsd-questions@FreeBSD.ORG Wed Aug 27 22:07:23 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0C04F1065679 for ; Wed, 27 Aug 2008 22:07:23 +0000 (UTC) (envelope-from nejc@skoberne.net) Received: from svarun.infrax.si (syssvarun.infrax.si [89.212.81.4]) by mx1.freebsd.org (Postfix) with ESMTP id B901C8FC18 for ; Wed, 27 Aug 2008 22:07:22 +0000 (UTC) (envelope-from nejc@skoberne.net) Received: from localhost (sysSvarun.infrax.si [89.212.81.4]) by svarun.infrax.si (Postfix) with ESMTP id 869DB24B19D for ; Wed, 27 Aug 2008 23:47:45 +0200 (CEST) Received: from svarun.infrax.si ([89.212.81.4]) by localhost (svarun.infrax.si [89.212.81.4]) (amavisd-maia, port 10024) with ESMTP id 74165-03 for ; Wed, 27 Aug 2008 23:47:28 +0200 (CEST) Received: from [192.168.15.2] (lk.84.20.249.154.dc.cable.static.lj-kabel.net [84.20.249.154]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) (Authenticated sender: nejko@infrax.si) by svarun.infrax.si (Postfix) with ESMTP id 7E7E624A9A0 for ; Wed, 27 Aug 2008 23:47:28 +0200 (CEST) Message-ID: <48B5CB70.9080900@skoberne.net> Date: Wed, 27 Aug 2008 23:47:28 +0200 From: =?ISO-8859-2?Q?Nejc_=A9koberne?= User-Agent: Thunderbird 2.0.0.16 (Windows/20080708) MIME-Version: 1.0 To: User Questions X-Enigmail-Version: 0.95.7 Content-Type: text/plain; charset=ISO-8859-2 Content-Transfer-Encoding: 7bit X-Virus-Scanned: Maia Mailguard Subject: Proxying broadcasts? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 27 Aug 2008 22:07:23 -0000 Hello, I have a central FreeBSD 7.0 router running pf with SERVERS and USERS1 and USERS2 networks attached to it. I also have some Sybase SQL servers on SERVERS network, which use broadcasts to announce themselves to the network. Before, when there were no separate segments, everything worked fine of course. My question: is there any way to "proxy" (forward) broadcast requests from USERS1 to the SERVERS network? So the users in USERS* networks could find Sybase SQL servers via broadcasts? I tried something like this in my test environment (tried to NAT broadcasted DNS requests, just for trying if pf could do it): nat on $ServersInterface from 192.168.3.100 to 192.168.1.255 -> 192.168.1.1 rdr pass on $UsersInterface proto udp from 192.168.3.100 to 192.168.3.255 port 53 -> 192.168.1.255 (3.100 is a client from USERS1, 1.1 is the router) But this doesn't seem to be working (no translated packets on the interfaces). I guess it's impossible? I also analyzed traffic when Sybase client searches for servers - it sends one broadcast packet (UDP) to port 2638 and servers reply directly to the client with UDP reponse packet. Thanks, Nejc