On Mon, 14 Apr 2025 09:33:38 +0000, "otto.cooper" <otto.coo...@proton.me> wrote:
> The problem at hand is how to define the macros ext_if and int_if for > a system with multiple interfaces. On my router, I use ifconfig's group parameter for that: https://man.openbsd.org/ifconfig#group # grep internal /etc/hostname.* /etc/hostname.vlan20:group "internal" /etc/hostname.vlan40:group "internal" etc, and then in pf.conf # grep internal /etc/pf.conf pass in on internal proto { tcp, udp } to (self) port ntp pass in on internal proto { tcp, udp } to (self) port domain etc Cheers, Daniel
