Hi Guys,
Thanks for the feedback, to address your points:
1> Possibly stupid question, but did you set the sysctl(s) to enable forwarding?
Yes I tried this pf rule change with version 4 forwarding
(net.inet.ip.forwarding) both enabled and disabled.
Either way the pf "pass out tagged" rule is never matched.
I didn't reboot after changing this setting. It's not clear to me if that
is necessary. For the version 6 variable (net.inet6.ip6.forwarding) "man
2 sysctl" states:
"... changing this variable during operation may cause serious trouble.
Hence, this variable should only be set at bootstrap time."
Whatever that might mean. Anyway, for the version 4 variable there no
similar remark.
2> And there is also mforwarding
3> And multicast=YES rc.conf.local
In this first simple proof/test I just tried to forward some UDP. So this
is not yet relevant. But I think you are both right, if I get as far as
doing multicasting, I'll probably need those.
Out of interest I grepped in /etc and it seems that setting multicast=YES
influences the netstart script. When multicast is not "YES" then the
route for 224.0.0.0/4 is deleted and re-added to the IP loopback address
with an option "reject".
Cheers,
Robb.
