Re: Source-based routing (sometimes)

To: Michael Graff <explorer%flame.org@localhost>
Subject: Re: Source-based routing (sometimes)
From: Hans Rosenfeld <rosenfeld%grumpf.hope-2000.org@localhost>
Date: Tue, 24 Nov 2009 18:54:51 +0100

On Tue, Nov 24, 2009 at 10:59:01AM -0600, Michael Graff wrote:
> I tried adding this to my pf.conf:
> 
> pass out on rtk0 route-to ( gif0 149.20.65.100 ) from 149.20.7.0/24 to
> any
> 
> It seems that the route-to is ignored.

I recently had a similar problem. Some other pf rule created state
information that matched those packets that were supposed to go through
the tunnel. Adding "no state" to all rules that could possibly affect
those packets fixed it for me.

Hans

-- 
%SYSTEM-F-ANARCHISM, The operating system has been overthrown

Follow-Ups:
- Re: Source-based routing (sometimes)
  - From: Michael Graff
- Re: Source-based routing (sometimes)
  - From: David Young

References:
- Source-based routing (sometimes)
  - From: Michael Graff

Prev by Date: Re: netbsd5-i386 is broken for me after this weekend's changes
Next by Date: Re: Source-based routing (sometimes)
Previous by Thread: Source-based routing (sometimes)
Next by Thread: Re: Source-based routing (sometimes)
Indexes:

Home | Main Index | Thread Index | Old Index