Re: npf questions/experience migrating from ipf on NetBSD8

To: yancm%sdf.org@localhost
Subject: Re: npf questions/experience migrating from ipf on NetBSD8
From: Robert Swindells <rjs%fdy2.co.uk@localhost>
Date: Sun, 03 Jan 2021 22:05:39 +0000

yancm%sdf.org@localhost wrote:
>>>I even tried a simple, promiscuous ruleset and that also fails to NAT?
>>>
>>># npfctl show
>>># filtering:    active
>>># config:       loaded
>>>
>>>procedure "log"
>>>
>>>map wm0 dynamic any -> 10.1.10.10 pass family inet4 from 192.168.1.0/24 #
>>>id="1"
>>
>> You seem to be using 192.168.1.0/24 for your lan, where does 10.1.10.10
>> come into the equation ?
>>
>> I'm guessing that wm0 is your external interface, what is the IPv4
>> address ?
>
>Yeah...oddball setup...the "external", to the NetBSD router
>interface, really is 10.1.10.10 (wm0).
>
>10.1.10.1 (the only other member of this intermediate local net)
>is the Comcast router and it is bidirectionally routing
>10.1.10.1 to and from a dynamic ip...

Have you tried copying what is in soho_gw-npf.conf ?

$ext_if = "wm0"
$ext_v4 = inet4(wm0)
$localnet = { 192.168.1.0/24 }

$int_if = "bge0"

map $ext_if dynamic $localnet -> $ext_v4

Plus some group entries based on the ones in the example file.

Follow-Ups:
- Re: npf questions/experience migrating from ipf on NetBSD8
  - From: yancm

References:
- Re: npf questions/experience migrating from ipf on NetBSD8
  - From: yancm

Prev by Date: Re: npf questions/experience migrating from ipf on NetBSD8
Next by Date: Re: npf questions/experience migrating from ipf on NetBSD8
Previous by Thread: Re: npf questions/experience migrating from ipf on NetBSD8
Next by Thread: Re: npf questions/experience migrating from ipf on NetBSD8
Indexes:

Home | Main Index | Thread Index | Old Index