On Wed, Mar 19, 2003 at 01:37:35PM -0800, Bryan Irvine wrote: > What I want is for the 192.168.0.* and 10.0.*.* networks to see each > other just fine. Which is possible to do with routing, but then for > these networks to get onto the internet I have to turn on NAT (or do I?) > which makes the 2 networks invisible to each other except via rdr rules, > which won't work for this scenario.
Look at 'no nat ...' in pf.conf(5). You can define a rule saying, if 192.168.0.* and 10.0.*.* need to talk to public addresses, nat them, otherwise, don't.
