Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 07 Mar 2021 19:58:45 +0100
From:      Ludovit Koren <ludovit.koren@gmail.com>
To:        freebsd-questions@freebsd.org
Subject:   PF - reply-to
Message-ID:  <8635x6vli2.fsf@gmail.com>

Next in thread | Raw E-Mail | Index | Archive | Help


Hi all,

we have 2 Internet connections coming on the same interface. One is
primarily used for incoming connections and services that we provide to
Internet (web, mail). The other connection is primarily used for
browsing (cache/proxy) and DNS. There are 2 different routers.

I am using FreeBSD 12.2-STABLE r369178 and PF. The question is which
router should I set as default router. I suppose, I can use reply-to
and/or route-to, respectively. If I use (default router $router2):

pass in on $ext_if reply-to (bge0 $router1) inet proto tcp from any to $web_addr port 443 keep state

it is not working. The following setup is working (default router $router1):

pass out on $ext_if route-to (bge0 $router2) inet proto tcp from any to any keep state

Is it bug or I do not understand the manual page correctly?

Thank you very much.

Regards,
lk



Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?8635x6vli2.fsf>