[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: PF-NAT and RFC 1878
- To: "robert schwartz" <robert@mrsquirrel.com>, <misc@openbsd.org>
- Subject: Re: PF-NAT and RFC 1878
- From: "Pillai, Gopakumar (Gopu)" <gopu@avaya.com>
- Date: Thu, 12 Feb 2004 16:10:20 -0700
- content-class: urn:content-classes:message
- Thread-Index: AcPxrZdZO3gPvdKSSEu/oTt2ALDMPgACZD3w
- Thread-Topic: PF-NAT and RFC 1878
This is my NAT rule:
binat on fxp0 inet from 192.168.1.0/28 to any -> 172.16.3.0/28
If send traffic from 192.168.1.1 to 192.168.1.14 the source IP is NOT
translated.
But say if I send it from 192.168.1.50, it is translated.
This, I feel, is because the logic of calculating mask does not
allow 1 bit mask, which was changed in RFC 1878 later.
So would like to know if this is a limitation of PF or OpenBSD. Is there
any fix for this?
Thank You
--Gopu
-----Original Message-----
From: owner-misc@openbsd.org [mailto:owner-misc@openbsd.org] On Behalf
Of robert schwartz
Sent: Thursday, February 12, 2004 11:40 AM
To: Pillai, Gopakumar (Gopu); misc@openbsd.org
Subject: Re: PF-NAT and RFC 1878
I don't see your pf.conf here at all, until that can be ruled out, it's
the most likely cause of your problems.
> -----Original Message-----
> From: owner-misc@openbsd.org [mailto:owner-misc@openbsd.org]
> On Behalf Of Pillai, Gopakumar (Gopu)
> Sent: Thursday, February 12, 2004 9:08 AM
> To: misc@openbsd.org
> Subject: PF-NAT and RFC 1878
>
>
> Hi,
> I am using NAT of PF on OpenBSD 3.2 stable. I have a static
> nat rule to translate 192.168.1.0/28. Problem here is that
> the first subnet 192.168.1.1 to 192.168.1.14 is not
> translated, rest all works fine.
>
> So my question is that, does PF support 1 subnet bit (as
> mentioned in RFC 1878). If not in 3.2 did they change the
> behavior in later versions?
>
> --Gopu