Date: Fri, 28 Jul 2006 00:19:19 -0500 From: "Travis H." <solinym@gmail.com> To: "Lyndon Nerenberg" <lyndon@orthanc.ca> Cc: freebsd-pf@freebsd.org Subject: Re: nat/outbound traffic not passing in pf on FreeBSD 6.1 Message-ID: <d4f1333a0607272219x4608a5farc07c209c898abd5f@mail.gmail.com> In-Reply-To: <20060726110541.K25284@orthanc.ca> References: <44C71D8F.9090007@sailorfej.net> <d4f1333a0607260239m5059f200j3447025bbeceea77@mail.gmail.com> <20060726110541.K25284@orthanc.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
On 7/26/06, Lyndon Nerenberg <lyndon@orthanc.ca> wrote: > In the OpenBSD implementation, the 'nat' statement implicitly enables > 'keep state' behaviour, therefore a separate rule is not required. You're right, I was forgetting that his "default block" rule applied only to inbound traffic, otherwise a "pass" would have been lacking in the nat rule. -- "if you're not part of the solution, you're part of the precipitate" Unix "guru" for rent or hire || http://www.lightconsulting.com/~travis/ -><- GPG fingerprint: 9D3F 395A DAC5 5CCC 9066 151D 0A6B 4098 0C55 1484
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?d4f1333a0607272219x4608a5farc07c209c898abd5f>