> > IIRC pf packet flow is also influenced by routing which is done > > before pf. That's why local sourced traffic for remote destination > > cannot be redirected back to local host. > > Could you help me understand this a little better? How do you mean traffic > locally originated by the firewall cannot be redirected? > > I understand FIB routing is only done after ingress processing (if no > "route-to" is found on an matching inbound direction route).
http://comments.gmane.org/gmane.os.openbsd.misc/183179 j.
