Jesus Sanchez wrote:
Gregory Edigarov escribis:
Jesus Sanchez wrote:
Hi, I'm using OpenBSD 4.2.
I'm triying to get a very unsafe-simple ruleset to make a nat between a
laptop and my OpenBSD box. From my OpenBSD box I have two nics:
OpenBSD box:
rl0 (witch gets a IP from dhcp and gets to the internet via ADSL)
sk0 (directly connected to the laptop via one cable)
I seted the int_if ip statically as 192.168.1.1 (the laptop have
asigned
192.168.1.2 and they see each other without problem, and I can do FTP
transfers and stuff like that)
I have set the sysctl net.inet.ip.forwarding=1
my pf.conf (very unsafe and very simple, only to try this)
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
ext_if = "rl0"
int_if = "sk0"
localnetwork = "${int_if}:network"
scrub in all
nat on $ext_if from $localnetwork to any -> (ext_if)
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
then I make on the laptop (wich uses rl0):
ifconfig rl0 inet 192.168.1.2
but in the laptop I don't have internet at all, it see the OpenBSD
box as 192.168.1.1 but nothing more.
What I'm doing wrong?
Thanks for your time
-Jesus
nat pass on $ext_if from $localnetwork to any -> (ext_if)
or, add these two lines to the end of your pf.conf:
block all
pass all
I tried that and still same thing. Nothing changes with theese rules.
are you sure your pf is enabled?
pfctl -e
--
With best regards,
Gregory Edigarov
