--On 08 September 2005 15:55 +0200, Stephan A. Rickauer wrote:
Ok, I'll make it more concrete. If a machine has traffic going over two interfaces (router) a netfilter rule would look like this: iptables -A FORWARD -i in-iface -o out-iface ... It looks like with pf one achieves that with: pass in on in-iface ... pass out on out-iface ...
pass in on in-iface ... keep state
