From owner-freebsd-stable@FreeBSD.ORG  Wed Jan 31 19:58:43 2007
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
X-Original-To: freebsd-stable@freebsd.org
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 7221B16A40D
	for <freebsd-stable@freebsd.org>; Wed, 31 Jan 2007 19:58:43 +0000 (UTC)
	(envelope-from stable@museum.rain.com)
Received: from ns.umpquanet.com (ns.umpquanet.com [63.105.30.37])
	by mx1.freebsd.org (Postfix) with ESMTP id 510AA13C4A7
	for <freebsd-stable@freebsd.org>; Wed, 31 Jan 2007 19:58:43 +0000 (UTC)
	(envelope-from stable@museum.rain.com)
Received: from ns.umpquanet.com (localhost [127.0.0.1])
	by ns.umpquanet.com (8.13.8/8.13.8) with ESMTP id l0VJwgCL075587;
	Wed, 31 Jan 2007 11:58:42 -0800 (PST)
	(envelope-from stable@museum.rain.com)
Received: (from james@localhost)
	by ns.umpquanet.com (8.13.8/8.13.8/Submit) id l0VJwgKJ075586;
	Wed, 31 Jan 2007 11:58:42 -0800 (PST)
	(envelope-from stable@museum.rain.com)
Date: Wed, 31 Jan 2007 11:58:41 -0800
From: James Long <stable@museum.rain.com>
To: Stefan Lambrev <stefan.lambrev@sun-fish.com>
Message-ID: <20070131195841.GA75352@ns.umpquanet.com>
References: <20070130120050.899B816A4BF@hub.freebsd.org>
	<20070131004234.GA13590@ns.umpquanet.com>
	<45C045B0.1060108@sun-fish.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <45C045B0.1060108@sun-fish.com>
User-Agent: Mutt/1.5.13 (2006-08-11)
Cc: freebsd-stable@freebsd.org
Subject: Re: impossible rc.d ordering problem with stf and pf ?
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>, 
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 31 Jan 2007 19:58:43 -0000

On Wed, Jan 31, 2007 at 09:30:56AM +0200, Stefan Lambrev wrote:
> Hello,
> 
> >>	pass out on (stf0) inet6 from any to any keep state
> >>    
> >
> >Just for my edification, what is the point of "keep state" on an
> >"any-to-any" rule?
> >
> >  
> imagine that you have only 2 rules -
> block in on $if all
> pass out on $if from any to any keep state
> 
> - with "keep state" you have internet, without it you do not have ;)

Thank you.

I must read more closely.  I did not grok the "out."


Jim