[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: PF and "route-to"

To: <misc@openbsd.org>
Subject: Re: PF and "route-to"
From: "Luis Cerdas" <luis.cerdas@rawten.net>
Date: Fri, 07 Jun 2002 09:10:19 -0600
User-Agent: Microsoft-Outlook-Express-Macintosh-Edition/5.02.2022

> it's just that there's a performance penalty and we don't see much need for
> this - you can NAT on the inner interface.

In our situation (and any others with two or more gateways) this is not a
workable solution as the NAT would take place before the correct route is
selected, so we might end up with a packet natted to the second external
interface, going out the first (or vice-versa).

Follow-Ups:
- Re: PF and "route-to"
  - From: Daniel Hartmeier <daniel@benzedrine.cx>

References:
- Re: PF and "route-to"
  - From: Henning Brauer <lists-openbsd@bsws.de>

Prev by Date: Re: Converting ipf & ipnat.rules to pf.conf & nat.conf
Next by Date: Re: Connecting two seperate networks with OpenBSD
Prev by thread: Re: PF and "route-to"
Next by thread: Re: PF and "route-to"
Index(es):
- Date
- Thread