See
http://undeadly.org/cgi?action=artic...20060928081238 section
Create TCP states on the initial SYN packet.
Although for
pf, this section explains why it is important to keep state on the first packet of the three-way TCP handshake. Doing this prevents problems with TCP window scaling.
IIRC FreeBSD has a sysctl to disable this window scaling as defined in RFC 1323.On OpenBSD (don't have access to a FBSD box) it is called
Code:
net.inet.tcp.rfc1323=1
You first could try to disable this.