Too many dynamic rules, sorry

Micheal Patterson micheal at
Fri Sep 17 08:45:00 PDT 2004

----- Original Message ----- 
From: "Norm Vilmer" <norm at>
To: "Micheal Patterson" <micheal at>
Cc: <freebsd-questions at>
Sent: Friday, September 17, 2004 10:30 AM
Subject: Re: Too many dynamic rules, sorry


> I do have a check-state rule
> add 00200 check-state
> Norm Vilmer

Ok. Then right above the check-state entry, place an

allow ip from 123.123.123/24 to 123.123.123./24

Replace the ip's with the appropriate network/metric for your lan and that
will allow lan traffic to go to itself unhindered by any stateful checks.


Micheal Patterson
TSG Network Administration

Confidentiality Notice:  This e-mail message, including any attachments,
is for the sole use of the intended recipient(s) and may contain
confidential and privileged information. Any unauthorized review, use,
disclosure or distribution is prohibited. If you are not the intended
recipient, please contact the sender by reply e-mail and destroy all
copies of the original message.

More information about the freebsd-questions mailing list