that's the thing, you don't... Each time you change anything in your rules or reboot the box, this configuration is lost. You could save the edited rules.debug file and use it whenever you loose this specific rule
Sex, 2008-05-09 às 16:14 -0300, Diego A. Gomez escreveu: > 2008/5/9 David Meireles <[EMAIL PROTECTED]>: > > Diego, I had the same problem (have a pfSense acting as VPN client, and from > > the server I can ping the other side, from the lan I can't). > > Here's what you have to do: > > > > First, disable automatic outbound nat rules, or else this will only work for > > a few seconds > > Second, edit /tmp/rules.debug and add the line "nat on tun0 from > > YOUR-LAN-SUBNET/24 to any -> (tun0)" bellow "Outbound nat rules" > > Tird, save and run "/sbin/pfctl -f /tmp/rules.debug" > > > > More info at http://cvstrac.pfsense.com/tktview?tn=1466 > > Where I must to write this in order to avoid to lose these changes? > > Thanks! >
