On Fri, 21 Jul 2006, Daniel E. Hassler wrote:
> Yes. I called it a Transparent Packet Filter (TPF) - the OpenBSD system is
> acting as a
> bridge.
> It's transparent because neither of the interfaces has an IP configured.
>
> WAN<--->PIX<--->DMZ<--->TPF<--->LAN<--->OS X
Oh yes, I recall that "image" from one of your posts.
It's a filtering bridge then.
Would be interesting if bridging has something to do with
our reassemble tcp problem...
Perhaps because the if is in promiscuous mode?
However, as I've mentioned earlier, everything works _on_ the gateway
_without_ NAT. But regardless of NAT, all packets cross the bridge
which connects the OpenBSD VM to the external gateway (cablemodem).
Walter
PS: I'll do a cc to the mailing list too to let people know we're
having a bridge involved.
