On Tue, 26 Jul 2011, Robert Wolf wrote:
>
> Hallo all,
>
> I have one more question about other PF problem. I have installed OpenBSD in
> fail-over configuration using carp for shared IPs and pfsync for state
> synchronization to fail-over node. Now, we have big proble
ers notify about connection problems.
Do you have some idea, what could be the problem?
Could it be some configuration of PF state timeouts?
Thank you very much for your answers.
Regards,
Robert Wolf.
how the "nesting" should be done correctly?
Is the rule "From PolicyIn to PolicyIn-LAN" correct in "PolicyIn" anchor
or should it be in main table as following?
-
anchor "PolicyIn/PolicyIn-LAN" in on vic0 inet from any to any no state
label "From main to PolicyIn-LAN of PolicyIn"
-
Thank you very much for you answers.
Regards,
Robert Wolf
