Hello, once again. As I answered when you
asked this same question in December, there is no longer a direct equivalent to
no rdr. As you have discovered,
no pass is not part of the language of PF.
I will try once again to explain how to manage exceptions to
rdr-to rules, and to be more clear, if I can:
- Write your pass rule with rdr-to to be the common, general case.
- Write a second, narrow pass rule without rdr-to for traffic you wished excluded from redirection.
If this is still not clear to you, please, post your pf.conf file and tell us exactly what services you want redirected, and which you want excluded from redirection, so that we can provide specific guidance for your environment.
All we have from you is your single no rdr
rule from your pre-4.7 system, and that is insufficient information to help you further, if these instructions are still unclear to you.