> bge1 - Internal Interface, 192.168.0.1 > sk0 - Management Interface, 192.168.0.36
These are on the same network. From your ifconfig: bge1 inet 192.168.0.1 netmask 0xffff0000 broadcast 192.168.255.255 sk0 inet 192.168.0.36 netmask 0xffffffc0 broadcast 192.168.0.63 I suspect that will cause all kinds of problems. 192.168.0.0/26 link#3 UC 0 0 - sk0 192.168/16 link#2 UC 0 0 - bge1 So which interface will packets destined for you gateway of 192.168.0.1 be sent? I *think* the narrow netmask wins so it goes to sk0. What will your pf ruleset do to those packets if seen on sk0? put sk0 on net 10 or narrow it's netmask to /32 (host route) and try again. // marc (just guessing)
