From 464d873b316ed58c24faad3dc2a74a308dd7163d Mon Sep 17 00:00:00 2001
From: Tom Alexander <tom@fizz.buzz>
Date: Sat, 29 Oct 2022 20:36:13 -0400
Subject: [PATCH] DNS forwarding working.

---
 ansible/roles/firewall/files/odofreebsd_pf.conf | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/ansible/roles/firewall/files/odofreebsd_pf.conf b/ansible/roles/firewall/files/odofreebsd_pf.conf
index 33851d9..56b4db7 100644
--- a/ansible/roles/firewall/files/odofreebsd_pf.conf
+++ b/ansible/roles/firewall/files/odofreebsd_pf.conf
@@ -15,6 +15,8 @@ set skip on lo
 # redirections
 nat on $ext_if inet from $jail_net_v4 to { any, !$jail_net_v4 } tag ALLOWED -> (wlan0)
 
+rdr on nat_uplink0 inet proto {tcp, udp} from any to 10.193.223.1 port 53 tag ALLOWED -> 1.1.1.1 port 53
+
 # filtering
 block log all
 pass quick on $ext_if tagged ALLOWED