[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Routing private networks

On Friday, Mar 21, 2003, at 10:54 US/Pacific, Bryan Irvine wrote:

Do I need the 2nd no nat rule or is it just extra and in the way?

WAN  = "xl0"
LAN  = "xl1"
LAN2 = "xl2"

no nat from $LAN to $LAN2
no nat from $LAN2 to $LAN
nat on $WAN inet from to any -> ($WAN)
nat on $WAN inet from to any -> ($WAN)

Unless I am missing something, you do not need any of the "no nat" rules.
You are, after all, only doing nat on $WAN, and packets moving between
$LAN and $LAN2 never touch $WAN.