On Fri, 23 Sep 2005, Chad M Stewart wrote:
I'm building a new firewall, or rather an HA pair using OpenBSD, pf, carp,
pfsync, etc.. I'm writing a new pf.conf configuration as well. I'm trying
to do policy based rules (i.e. tagging), using the PF FAQ
(ftp://ftp.openbsd.org/pub/OpenBSD/doc/pf-faq.txt) and in the example it has
the following line to setup NAT.
nat on $ext_if tagged LAN_INET tag LAN_INET_NAT -> ($ext_if)
The problem is that pfctl complains about a syntax problem with that line.
So I've noticed too. See this post:
http://marc.theaimsgroup.com/?m=112319070010235
I even mailed bugs@ about it, but it seem to have gone by unnoticed:
http://marc.theaimsgroup.com/?m=112276608602981
/Johan
