On 2013/05/21 17:09, Aaron Dewell wrote: > There will be packets arriving at this interface also, however, they aren't > "returned" as such, just counted (except ping testing), so I should be good > there. So it sounds like what I need is, for example: > > pass in from 10.1.1.0/24 route-to 10.1.1.1@vlan1 > > vlan1 being the correct outgoing interface which is configured with an > address on the 10.1.1.0/24 network. That's much simpler than I was > imagining. I have four of these, so my pf.conf file could look like: > > pass in from 10.1.1.0/24 route-to 10.1.1.1@vlan1 > pass in from 10.1.2.0/24 route-to 10.1.2.1@vlan2 > pass in from 10.1.3.0/24 route-to 10.1.3.1@vlan3 > pass in from 10.1.4.0/24 route-to 10.1.4.1@vlan4 > > If I needed inbound traffic returned (ping), I would add: > > pass in on vlan1 reply-to 10.1.1.1@vlan1 > pass in on vlan2 reply-to 10.1.2.1@vlan2 > pass in on vlan3 reply-to 10.1.3.1@vlan3 > pass in on vlan4 reply-to 10.1.4.1@vlan4 > > That's assuming I've understood what you've said correctly!
That looks right to me.
