Hello friends,
I need configure one new BSD with PF to resolve this scenario...
[ISP]------bnx0[BSD]bnx4------{LAN 10.0.0.0/8}
ISP
IPv4 181.143.98.153/29
bnx0
Gateway 181.143.98.153
IPv4 181.143.98.157/29 <- ISP Public IP
bnx4
IPv4 177.126.32.1/22 <- Our own pool of public's IP's
alias 177.126.32.2/32
alias 177.126.32.3/32
alias 177.126.32.4/32
alias 177.126.32.5/32
alias 177.126.32.6/32
alias 177.126.32.7/32
alias 177.126.32.8/32
alias 10.0.1.1/24
The actual NAT rule working good
match out on egress inet from ! (egress:network) to any nat-to (egress:0)
This rule make all PC's with IP's 10.0.0.0/8 out with the public IP 181.143.98.157
But now need new rule to make all PC's out with the public IP 177.126.32.1
I try this but not work
match out on $int_if inet from 10.0.0.0/8 to any nat-to 177.126.32.1
Any idea?
Thank you for your help!
I need configure one new BSD with PF to resolve this scenario...
[ISP]------bnx0[BSD]bnx4------{LAN 10.0.0.0/8}
ISP
IPv4 181.143.98.153/29
bnx0
Gateway 181.143.98.153
IPv4 181.143.98.157/29 <- ISP Public IP
bnx4
IPv4 177.126.32.1/22 <- Our own pool of public's IP's
alias 177.126.32.2/32
alias 177.126.32.3/32
alias 177.126.32.4/32
alias 177.126.32.5/32
alias 177.126.32.6/32
alias 177.126.32.7/32
alias 177.126.32.8/32
alias 10.0.1.1/24
The actual NAT rule working good
match out on egress inet from ! (egress:network) to any nat-to (egress:0)
This rule make all PC's with IP's 10.0.0.0/8 out with the public IP 181.143.98.157
But now need new rule to make all PC's out with the public IP 177.126.32.1
I try this but not work
match out on $int_if inet from 10.0.0.0/8 to any nat-to 177.126.32.1
Any idea?
Thank you for your help!
Last edited:
