For efficiency, you should use quick
You also should use flags S/SA keep state for TCP traffic to make sure that state will be created on the first TCP packet of the three-way TCP handshake. The reason is explained in the "Filter statefully" section of http://undeadly.org/cgi?action=artic...20060927091645.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
|