-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Thanks in advance for guidelines on using pf with carp and pfsync boxes that bridge rather than route.
I found this guide: http://www.seattlecentral.edu/~dmartin/docs/bridge.html but it says carp doesn't work with bridging and to use spanning tree instead. That was on OBSD 3.5 and I don't see anything about bridging in more recent manpages for carp. Has anything changed? As for why I'm bridging: I have an application that NAT breaks. Currently I have another pair of pf boxes running carp/pfsync and routing to NAT'd space. That works fine but the new application requires routable addresses (I've tried rdr to the NAT'd addresses, but no joy). So, instead I plan to set things up like this: Net <-> 2 pf bridges <-> new app <-> 2 pf routers <-> NAT space There's no redundancy in the net connection, just one IP from the ISP. Thanks again for any clues on setting this up. dn iD8DBQFGY28/yPxGVjntI4IRAiIKAJ95QbjJVjTT9WSmfGjTc+oewImn/ACg9Y5o KKSIYsl5nSzBhEhY9lfmAUU= =y63T -----END PGP SIGNATURE-----
