View Single Post
  #7   (View Single Post)  
Old 10th July 2019
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 7,977
Default

It's not a mess. It is readable, and your intent is understandable.
  • Your main ruleset is missing an anchor point, so the anchor rules are never applied. See Linking authpf into the Main Ruleset in the PF User's Guide chapter, and the example configuration in the same page, for anchor point use examples.
  • Your authpf rules do not use $user_ip or $user_id. A single authpf session will pass all outbound traffic for $allowed_tcp_ports.
Reply With Quote