[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Tcpdump grepped for the machine: RE: Trouble with route-to:



Almost forgot, after flushing the rules I get this sniffing the internal
interface for the specific machine:
Mar 09 22:10:45.672228 0:9:5b:12:43:xx 0:c:f1:91:70:xx 0800 60:
192.168.1.132.1272 > 216.51.232.100.80: F 2716131419:2716131419(0) ack
3404415008 win 17520 (DF)
Mar 09 22:10:45.682221 0:9:5b:12:43:xx 0:c:f1:91:70:xx 0800 62:
192.168.1.132.1273 > 216.51.232.100.80: S 417417262:417417262(0) win 16384
<mss 1460,nop,nop,sackOK> (DF)
Mar 09 22:10:45.823214 0:c:f1:91:70:xx 0:9:5b:12:43:xx 0800 62:
216.51.232.100.80 > 192.168.1.132.1273: S 3612195261:3612195261(0) ack
417417263 win 17520 <mss 1460,nop,nop,sackOK> (DF) [tos 0x80]
Mar 09 22:10:45.823878 0:9:5b:12:43:xx 0:c:f1:91:70:xx 0800 60:
192.168.1.132.1273 > 216.51.232.100.80: . ack 1 win 17520 (DF)
Mar 09 22:10:45.825377 0:9:5b:12:43:xx 0:c:f1:91:70:xx 0800 460:
192.168.1.132.1273 > 216.51.232.100.80: P 1:407(406) ack 1 win 17520 (DF)
Mar 09 22:10:48.682958 0:c:f1:91:70:xx 0:9:5b:12:43:xx 0800 62:
216.51.232.100.80 > 192.168.1.132.1273: S 3612195261:3612195261(0) ack
417417263 win 17520 <mss 1460,nop,nop,sackOK> (DF) [tos 0x80]
Mar 09 22:10:48.683628 0:9:5b:12:43:xx 0:c:f1:91:70:xx 0800 60:
192.168.1.132.1273 > 216.51.232.100.80: . ack 1 win 17520 (DF)
Mar 09 22:10:48.764326 0:9:5b:12:43:xx 0:c:f1:91:70:xx 0800 460:
192.168.1.132.1273 > 216.51.232.100.80: P 1:407(406) ack 1 win 17520 (DF)
 
Cheers!
> -----Original Message-----
> From: Ben [mailto:[email protected]] 
> Sent: Wednesday, March 09, 2005 10:07 PM
> To: '[email protected]'
> Subject: Trouble with route-to:
> 
> Hey all,  having a bit of a problem with routing one specific 
> ip address out a different interface in a 2 external interface setup:
> Em0=internal interface
> Rl0=external interface #1
> Rl1=external interface #2
> Gw1=external gateway #2
> $internal_net = 192.168.1.0
> 
> <snip>
> scrub in on $ext_if all
> scrub out on $ext_if all
> scrub in on rl1 all
> scrub out on rl1 all
> nat on rl0 from $internal_net to !$internal_net -> (rl0) nat 
> on rl1 from $internal_net to !$internal_net -> (rl1) <snip> 
> pass in on em0 route-to (rl1 gw1) from 192.168.1.132 to 
> !$internal_net keep state
> 
> Once I add the above line to pf.conf and flush the ruleset 
> the computer can no longer access the outside world.  So I 
> assume I need some sort of matching rule on rl1,  but can't 
> figure out what it is.  
> 
> If I manually change the routing table to pass a specific 
> destination ip address out through gw1 it works without a 
> flaw, however this machine needs to access more then a few 
> subnets through interface #2, so route-to is preffered.
> 
> 
> Let me know if anyone has any ideas,
> 
> 
> Ben
> 
>