On 2022-03-22, Philipp Buehler <e1c1bac6253dc54a1e89ddc046585...@posteo.net> wrote: >> server-east PF rule: >> ------------------------- >> @58 pass log quick on enc0 all flags S/SA tagged VPN.WEST > > enc(4) is an observer interface and not meant to take pf rules besides > "set skip on enc0" :-)
I disagree, that's where I hang my "scrub max-mss" rules for tuneLled traffic..
