Thanks for the replies.
Correct me if I'm wrong, but wouldn't this rule in your example file simply allow all traffic on the internal interface?
pass quick on internal inet
Quote:
The rules have pass out, but not a pass in.
|
So does that mean that I would need to specifically open port 80, 443, etc on em0 to allow traffic to get out to the Internet? This is what I don't really want to do - I'd rather not have the router unnecessarily listening on all those ports.