On Wed, 25 Feb 2009 16:39:08 -0800, patrick keshishian wrote: >You need states created for traffic passing through the pf firewall, >specifically through the $ext_if to allow packets flowing back in, >otherwise line 09 blocks those packets. I don't see where states would >get created for outbound traffic with Jason's rule-set. >
You are out-of-date. Keep state is the default for most most pass rules these days (Since 4.1 IIRC). man pf.conf on a modern version. Look at "pass" in the PACKET FILTERING section. *** NOTE *** Please DO NOT CC me. I <am> subscribed to the list. Mail to the sender address that does not originate at the list server is tarpitted. The reply-to: address is provided for those who feel compelled to reply off list. Thankyou. Rod/ /earth: write failed, file system is full cp: /earth/creatures: No space left on device
