On 7/26/06, Lyndon Nerenberg <[EMAIL PROTECTED]> wrote:
In the OpenBSD implementation, the 'nat' statement implicitly enables 'keep state' behaviour, therefore a separate rule is not required.
You're right, I was forgetting that his "default block" rule applied only to inbound traffic, otherwise a "pass" would have been lacking in the nat rule. -- "if you're not part of the solution, you're part of the precipitate" Unix "guru" for rent or hire || http://www.lightconsulting.com/~travis/ -><- GPG fingerprint: 9D3F 395A DAC5 5CCC 9066 151D 0A6B 4098 0C55 1484 _______________________________________________ freebsd-pf@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "[EMAIL PROTECTED]"
