Hello,
A piece of my pf.conf:
Code:
rdr pass on $ext_if proto tcp from <friends> to ($ext_if) port 80 -> $tgtserv port 8000
block log all
(...)
pass out quick on $ext_if proto tcp from any to $tgtserv port 8000
Why do I still have to have this filter rule? Otherwise this traffic is blocked on the outgoing part. It seems to me, pass keyword on rdr rules applies only to incoming part of the rule, not the whole of it.