nat/outbound traffic not passing in pf on FreeBSD 6.1
Travis H.
solinym at gmail.com
Fri Jul 28 05:19:21 UTC 2006
On 7/26/06, Lyndon Nerenberg <lyndon at orthanc.ca> wrote:
> In the OpenBSD implementation, the 'nat' statement implicitly enables
> 'keep state' behaviour, therefore a separate rule is not required.
You're right, I was forgetting that his "default block" rule applied
only to inbound traffic, otherwise a "pass" would have been lacking in
the nat rule.
--
"if you're not part of the solution, you're part of the precipitate"
Unix "guru" for rent or hire || http://www.lightconsulting.com/~travis/ -><-
GPG fingerprint: 9D3F 395A DAC5 5CCC 9066 151D 0A6B 4098 0C55 1484
More information about the freebsd-pf
mailing list