[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Re: Source-based routing (sometimes)
-----BEGIN PGP SIGNED MESSAGE-----
Hans Rosenfeld wrote:
> I recently had a similar problem. Some other pf rule created state
> information that matched those packets that were supposed to go through
> the tunnel. Adding "no state" to all rules that could possibly affect
> those packets fixed it for me.
I thought this was the problem as well, but it does not seem to be so.
In my case, ONLY packets coming in through the tunnel will have a
destination of 22.214.171.124/27, and I just want the replies to go out
that path as well.
I do see that packets originating inside my home net actually works
correctly though, and goes out and back in on gif0.
So, it seems that there is state being learned, but I have no idea why a
packet coming into gif0 is not getting learned as "should go out gif0".
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
-----END PGP SIGNATURE-----
Main Index |
Thread Index |