hi folks,
I have setup a network as follows
internet <-->[L3_switch1]<-->(out)[openbsd pf](in)-->L3
Switch]<-->[LAN1] / [LAN2]
I configure nat for LAN1(192.168.0.0/24) and LAN2(192.168.1.0/24)
nat on $ext_if inet proto $proto_natg from { $LAN1, LAN2 } to any ->
$ext_if port 10000:15000
i can't seem to route traffic from LAN2 to the internet. I've
configured the L3 Switches to route everything to their corresponding
fw's
(L3_switch1) 0.0.0.0 0.0.0.0 <Internet-Router>
(L3_switch2) 0.0.0.0 0.0.0.0 <192.168.0.1>
Is there a way for me to route traffic that LAN2 sent to the
L3SwitchIP ? sort of a reverse route.
I have tried to put in the following
rdr pass on $ext_if proto tcp from any to $LAN2 -> 192.168.0.6 (ip of switch2)
but to no avail. any comments would be greatly appreciated.
-pf
