On Wednesday 16 July 2008, Chris Smith wrote: > > pass log quick all flags S/SA keep state tagged natted
Just to clarify my thinking - the packet has to be passed in before it can be natted which applies, in your case, the natted tag, changing the above to a pass out rule and then add a pass in rule that isn't modified by "tagged natted" should work just fine. -- Chris
