Wm. G. Urquhart wrote:

> Hi all,
>
> I'm trying to configure an OpenBSD 3.3 box as a Firewall/NAT/Gateway.
> I've read lots of documentation and configured the machine correctly.
> However, I still can't get out of the box.
>
> I've set net.inet.ip.forwarding=1 in /etc/sysctl.conf, created a
> pf.conf file from the OpenBSD firewall example. The only exception
> here is that I've ommited the rdr entry, the tcp_services and
> icmp_types, the I enabled PF in the /etc/rc.conf file as well.
>
> From what I've read and (mis)understood this is all I need to do, am
> I right in this assumption? If this is the case can anyone help me
> out here?
>
> I'd appreciate your assistance here thanks.
>

Switch on logging, and use tcpdump -nettti pflog0. If that doesn't help,
start tcpdump on the normal interfaces to see where you made mistakes.

EJ
--
Remove the obvious part (including the dot) for my email address