incoming traffic
Daniel Hartmeier
daniel at benzedrine.cx
Thu May 19 14:54:15 GMT 2005
On Thu, May 19, 2005 at 12:06:14PM +0400, Eugene Mitrofanov wrote:
> I have a little question. As I can understand ALTQ queueing works for
> outgoing packets and it was confirmed by my experiments with pf but in the
> '/usr/share/examples/pf/' files there are a log of lines like
>
> pass in on dc0 from $boss to any queue boss_int
>
> Is ALTQ filetring works for ingress?
No, it doesn't, can't and couldn't possibly ;)
That rule was probably meant to have a 'keep state' option.
On 'pass in keep state' rules, the 'queue' option is valid and affects
how outgoing replies related to those connections are queued on the same
interface (or how incoming packets are queued going out on another
interface, when forwarded).
Daniel
More information about the freebsd-pf
mailing list