DNS, Gateway, Router Setup for Bhyve & iocage: TOTAL CONTAINERIZATION

root@bean     1.15   0%   ~  cat /etc/pf.conf                                                                                                                              210

#

THINKS TO SELF: Hrm, why yes, that is a $BOOTAY_KICKING prompt! I need to document it actually…later…
# Instant NAT
nat pass on ix0 from {172.16.0.0/24} to any -> (ix0)

# Better NAT/RDR
# Define the interfaces
ext_if = "ix0"
int_if = "bridge0"
tcp_svcs = "{ 22 2200 80 443 5000:6000 8000:9001 10000 }"
#container_net = $int_if:network

# Define the IP address of containers & ports for rdr/nat
FNASVM = "172.16.0.230"
FNASVM_TCP_PORTS = "{ 80, 443 }"

# Normalize packets & pass anything in TCP_SVCS
#scrub in all

# Define the NAT for the containers
nat on $ext_if from $int_if to any -> ($ext_if)

# FREENAS VM: Redirect traffic on ports 8180 and 8443
rdr pass on $ext_if proto tcp from any to any port 8180 -> $FNASVM port 80
rdr pass on $ext_if proto tcp from any to any port 8443 -> $FNASVM port 443

# Hrm, maybe quick is too fast
#pass in quick on $ext_if proto tcp from any to any port $tcp_svcs
pass in on $ext_if proto tcp from any to any port $tcp_svcs