Date: Mon, 14 Nov 2016 22:30:59 +0000 From: Big Lebowski <spankthespam@gmail.com> To: freebsd-pf@freebsd.org, freebsd-net@freebsd.org Subject: NAT Reflection rules for FreeBSD PF Message-ID: <CAHcXP%2BeMrDO0V276DuYKwHMoK8BrAYMhH6b16%2BVhtXRDrKAuAQ@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
Hi, I am trying to set up a 11.0-R PF based NAT for group of jails that needs to be able to talk to services on other jails, just as if they'd be clients from outside of the network. Apparently, this is called 'NAT reflection' and I was able to find examples for OpenBSD PF here: https://www.openbsd.org/faq/pf/rdr.html (bottom of the page). Obviously, their syntax doesn't work on FreeBSD PF, so how to achieve the same thing? How to allow jails NAT'd on $ext_if (xn0) coming from $jails_net (192.168.0.0/24 aliased on lo0) to talk to each other, via the $ext_if external IP? Regards, BL
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAHcXP%2BeMrDO0V276DuYKwHMoK8BrAYMhH6b16%2BVhtXRDrKAuAQ>