- What you have is not in any way wrong, but I would make all your queue(<whatever-priority>,tcp_ack_out); and
- I did not see any pass in ...
Consider...
Code:
#
pass in log quick on $ext_if inet \
from any to ($ext_if) keep state queue(<default-queue>,tcp_ack_out)
#
Reason being, when INBOUND traffic arrives and creates STATE, then, with the
QUEUE in play, STATEFUL outbound/reply traffic is QUEUED/PRIORITIZED; otherwise it is not.
/S