https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219316
--- Comment #11 from l...@donnerhacke.de ---
For flows the extend to ip:mask (per entry) does not really help:
- ports and protocol numbers are not covered
- hashs are not radix trees, they can handle only an uniform mask
And there is alr
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219316
--- Comment #12 from l...@donnerhacke.de ---
Ah, I missed the previous comment.
>>1) Large Scale NAT violates the happy eyeball requirement, that a given client
>> should always use the same external IP while communicating to a given
>> se
