On 2009-04-13, Insan Praja SW <insan.pr...@gmail.com> wrote: > I'd like to ask if "match" syntax has entirely usable to option like > rtable, queue etc. I use old syntax like "pass in from a.b.c.d/e to any > rtable 1 queue (queue1, queue2)". I'd like to update my 4.5-current, so I > need to confirm this is still a valid syntax or I just have to replace > with the "match" syntax.
match takes the same syntax as the other filter rules (pass/block) and is purely an addition. unlike scrub rules, you don't need to touch existing filter rules. if you want to check that your ruleset parses ok before you touch the real kernel and binaries, you can just extract pfctl from a new snapshot under /tmp and run /tmp/sbin/pfctl -nvf /etc/pf.conf.
