All the tutorials I found online about the PF firewall involve NAT redirection for the jails. Could someone explain why this is the case as most of the time the jails share the same network interface and the router deals with NAT?
The deciding factor is the "visibility" of the jail IP addresses outside the host that runs the jails. If the jail addresses are directly reachable (if you leave out packet filtering out of the equation) from the connected networks you don't need NAT, otherwise you do need it.
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.