On 2006/03/07 23:08, Chris Zakelj wrote: > Aye. You're flushing rules and NAT, but not your state table. Since > the state is already established, rules aren't re-evaluated. Adding a > state flush ought to get AOL wiped out. Just be mindful that if you > have something going on (like an SSH session), those states will also > get nailed.
Removing 'flags S/SA' from the pass rules should help there.
