Dear David, I also searched myself the rambam for over a week. I needed the ports bridged. For next to the router in my utilitycabin, meterbox, or whatever "meterkast" in English is, I have my tv, kodi and kitchenwifi connected. And I refused to route the ports or add another 24/7 consumer for a switch.
In the misc emailarchive you can find many emails about using pf rules
for dhcp traffic and requests. With big rants of mr. de Raadt who
mails you your security mails everyday.
Your right the physical interface should handle it. File a bug. I
didn't. I didn't mail the list. Just circumvented it. Also if you look
at the networklayer. With bridging you move up a layer. So it's
probably not a bug. It's due to the design. You can look it up.
I like the little box. The apu4d. Very charmed for the poweruse
<10watt. The most secure system on it with opensmtpd, dovecat, rspamd.
Geoip blocking and blocklists. Encrypted disc, encrypted emailstorage.
GPG EtoE and GPG mailbox encryption. Next I need to host my shared
agenda from Google and store automatic backups of phone pictures so I
can closedown my Googleaccount.
--
Met vriendelijke groet,
Pascal Huisman
H. L. Mencken suffers from the hallucination that he is H. L. Mencken --
there is no cure for a disease of that magnitude.
-- Maxwell Bodenheim
signature.asc
Description: This is a digitally signed message part
