>При таком конфиге WWW через НАТ не работает
>В чем может быть проблема.
>Спасибо.
>
>#########################
># Interfaces & Networks #
>#########################
>
>ext_if="vr0"
>int_if="fxp0"
>internal_net="10.10.1.0/24"
>external_addr="195.x.x.y"
>
>#############
># NAT Rules #
>#############
>
>nat on $ext_if from $int_if:network to any -> ($ext_if)
>pass from {lo, $int_if:network} to any keep state
>
>block in on $ext_if from any to any
>
>####################################
># Allow SSH & ping
> #
>####################################
>
>pass in on $ext_if inet proto icmp from 195.x.x.x to $ext_if icmp-type
>8 keep state
>pass in on $ext_if inet proto tcp from 195.x.x.x to $ext_if port
>22 keep state
>
>
>##############
># Allow Mail #
>##############
>
>pass in on $ext_if inet proto tcp from any to $ext_if port
>25 keep state #########################
# Interfaces & Networks #
#########################
ext_if="vr0"
int_if="fxp0"
internal_net="10.10.1.0/24"
external_addr="195.x.x.y"
scrub in all
#############
# NAT Rules #
#############
nat on $ext_if from $internal_net to any -> ($ext_if)
####################################
pass in quick on lo0 all
pass out quick on lo0 all
pass in quick on $int_if proto { tcp } from $internal_net to any port { 80, 443 } keep state
pass out quick on $ext_if proto { tcp } from $external_addr to any port { 80,443 } keep state
####################################
# Allow SSH & ping #
####################################
pass in quick on $ext_if inet proto icmp from 195.x.x.x to $ext_if icmp-type 8 keep state
pass in quick on $ext_if inet proto tcp from 195.x.x.x to $ext_if port 22 keep state
##############
# Allow Mail #
##############
pass in quick on $ext_if inet proto tcp from any to $ext_if port 25 keep state
####################################
block in on $ext_if from any to any
