I've got a FreeBSD NAT router using PF. It looks like this:
My NAT line in /etc/pf.conf looks like this:
Everything works well, hosts behind this router get the Internet just fine. I also have a jail on the same system that is bound to 172.16.10.10. The problem I am having is the jail's traffic randomly goes out different public addresses on bge0. How do I tell PF to just translate internal traffic out through A.A.A.1 on bge0? A.A.A.2 and A.A.A.3 are bound to jails so outbound traffic from the jail 172.16.10.10 should never show from A.A.A.2 and A.A.A.3.
Any advice would be great!
Code:
bge0 (Public Interface)
A.A.A.1
A.A.A.2
A.A.A.3
bge1 (Internal Interface)
172.16.10.1
172.16.10.10
My NAT line in /etc/pf.conf looks like this:
Code:
nat on bge0 from 172.16.10.0/24 to any -> (bge0)
Any advice would be great!