Hi Jggimi,
Thanks for the information. I put the following rules
Code:
block out on $int_if proto tcp from $lan to any port = http
block out on $int_if proto tcp from $lan to any port = https
pass out on $int_if proto tcp from $proxy to any port = http keep state
pass out on $int_if proto tcp from $proxy to any port = https keep state
Now the pfctl -nf /etc/pf.conf doesn't trigger any error. But still my LAN side I can access http and https traffic without the proxy.
Do I have to apply these rules before "
pass out keep state " section?
Thanks