On 2022-12-13 01:23, Philipp Buehler wrote:
Am 13.12.2022 06:02 schrieb J Doe:
set skip on { lo0, vif* }
in pf.conf(5) the GRAMMAR shows:
ifspec = ( [ "!" ] ( interface-name | interface-group ) ) |
"{" interface-list "}"
So you could do "set skip on { lo0 vif0 vif1 }" for explicit, or you
use interface-group, alas "set skip on vif". If that "one" interface
is e.g. vif7 within vif(4) this MIGHT go: "set skip on { vif !vif7 }".
Hi Philipp,
Ok, so the "!" is a NOT operation ?
If that is the case, could I use:
ext_if = "em0"
set skip on !$ext_if
... with the idea that this skips all interfaces (virtual or otherwise)
_EXCEPT_ em0, which is the real Ethernet NIC that I want to perform
filtering on ?
Thanks,
- J
