From owner-freebsd-pf@FreeBSD.ORG  Thu May 19 14:54:15 2005
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
Delivered-To: freebsd-pf@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 51C4316A4CE
	for <freebsd-pf@freebsd.org>; Thu, 19 May 2005 14:54:15 +0000 (GMT)
Received: from insomnia.benzedrine.cx (insomnia.benzedrine.cx [62.65.145.30])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 37EA743D54
	for <freebsd-pf@freebsd.org>; Thu, 19 May 2005 14:54:14 +0000 (GMT)
	(envelope-from dhartmei@insomnia.benzedrine.cx)
Received: from insomnia.benzedrine.cx (dhartmei@localhost [127.0.0.1])
	j4JEsBOP028335
	(version=TLSv1/SSLv3 cipher=DHE-DSS-AES256-SHA bits=256 verify=NO);
	Thu, 19 May 2005 16:54:11 +0200 (MEST)
Received: (from dhartmei@localhost)
	by insomnia.benzedrine.cx (8.13.4/8.12.10/Submit) id j4JEsALp021721;
	Thu, 19 May 2005 16:54:10 +0200 (MEST)
Date: Thu, 19 May 2005 16:54:10 +0200
From: Daniel Hartmeier <daniel@benzedrine.cx>
To: Eugene Mitrofanov <eugene@imedia.ru>
Message-ID: <20050519145410.GC20705@insomnia.benzedrine.cx>
References: <200505191206.14685.eugene@imedia.ru>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <200505191206.14685.eugene@imedia.ru>
User-Agent: Mutt/1.5.6i
cc: freebsd-pf@freebsd.org
Subject: Re: incoming traffic
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Technical discussion and general questions about packet filter (pf)
	<freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 19 May 2005 14:54:15 -0000

On Thu, May 19, 2005 at 12:06:14PM +0400, Eugene Mitrofanov wrote:

> I have a little question. As I can understand ALTQ queueing works for 
> outgoing packets and it was confirmed by my experiments with pf but in the 
> '/usr/share/examples/pf/' files there are a log of lines like
> 
> pass in on dc0 from $boss to any queue boss_int
> 
> Is ALTQ filetring works for ingress?

No, it doesn't, can't and couldn't possibly ;)

That rule was probably meant to have a 'keep state' option.

On 'pass in keep state' rules, the 'queue' option is valid and affects
how outgoing replies related to those connections are queued on the same
interface (or how incoming packets are queued going out on another
interface, when forwarded).

Daniel