Outgoing packets being sent via wrong interface
Daniel Bilik
ddb at neosystem.org
Tue Dec 1 11:18:21 UTC 2015
On Tue, 1 Dec 2015 18:24:18 +0800
Julian Elischer <julian at freebsd.org> wrote:
> if you reload pf it has no effect?
> pf is the part of the picture I have no experience with so I'm
> naturally suspicious of it.
> have you tried a simple ipfw nat instead? just as a sanity check?
Well, I have zero experience with ipfw and this is production system with
quite complex pf setup. So I don't have enough courage to experiment much
there. But next time it happens, I'll try to reload pf rules, and also to
disable pf completely - it's acceptable for short period of time, and
we'll see if there still are any "private" packets on "public" interface.
Thanks for suggestions.
--
Dan
More information about the freebsd-net
mailing list