This addition to the bridge(4) man page may make it a little easier for novices to use the combination of a bridge and pf.
diff -u bridge.4.a bridge.4 --- share/man/man4/bridge.4.a Mon Oct 1 15:31:04 2007 +++ share/man/man4/bridge.4 Mon Oct 1 15:36:54 2007 @@ -96,6 +96,9 @@ .Xr ip6 4 datagram; if so, the datagram is run through the pf interface so that it can be filtered. +The datagram is sent to pf as input on the incoming interface and as output +on all interfaces on which it is forwarded. +The pf functionality never sees a packet attributed to the bridge interface. .Sh IOCTLS A .Nm Geoff Steckel
