Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 8 Oct 2019 15:48:51 +0200
From:      Julien Cigar <julien@perdition.city>
To:        freebsd-net@freebsd.org
Subject:   CARP and NAT question
Message-ID:  <20191008134851.GP2691@home.lan>
next in thread | raw e-mail | index | archive | help 

--XFI+TFG+M3u0jUjZ
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

Hello,

I'd like to NAT outbound traffic from two different private networks=20
through two different interfaces, with CARP on top. I have 4 public IPS
available (193.x.x.89, 193.x.x.90, 193.x.x.91, 193.x.x.92).

I have two redundant router/firewall running FreeBSD 12 with CARP and=20
PF with the following: (1) which works well, but all traffic=20
goes through the same interface.

So I'd like to switch to something like (2), which will not work (lines=20
5 and 13 are not valid) and I'm wondering if I could use something like=20
(3) ..?

Thank you!
Julien

(1) https://gist.github.com/silenius/4f6173a9b6690292c2174ab3bb89d292
(2) https://gist.github.com/silenius/da9be7e74e9861fa55f927d194e3e410
(3) https://gist.github.com/silenius/b237565b0d181248ff80ea296e5537db

--=20
Julien Cigar
Belgian Biodiversity Platform (http://www.biodiversity.be)
PGP fingerprint: EEF9 F697 4B68 D275 7B11  6A25 B2BB 3710 A204 23C0
No trees were killed in the creation of this message.
However, many electrons were terribly inconvenienced.

--XFI+TFG+M3u0jUjZ
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----
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=FK2o
-----END PGP SIGNATURE-----

--XFI+TFG+M3u0jUjZ--

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20191008134851.GP2691>