Re: Filter on a CARP (active/passive) firewall

* Massimo Lusetti [2010-07-05 11:49]: > Hi guys, > I read on the OpenBSD PF's FAQ this statement: > > Ruleset Tips > > Filter the physical interface. As far as PF is concerned, network > traffic comes from the physical interface, not the CARP virtual > interface (i.e., carp0). So, write your r

Filter on a CARP (active/passive) firewall

Hi guys, I read on the OpenBSD PF's FAQ this statement: Ruleset Tips Filter the physical interface. As far as PF is concerned, network traffic comes from the physical interface, not the CARP virtual interface (i.e., carp0). So, write your rule sets accordingly. Don't forget that an interface na