Two(2) questions regarding quick and adding rules later.

[Greg Hennessy]

> 
> All traffic blocked unless I use quick.
> tcpdump -n -e -ttt -r /var/log/pflog
> showed traffic was blocked by the last rule unless I added 
> quick to pass rules.
> I thought the matching rules would have overiden the block rule?

If you don't use quick , the last matching rule wins. 

Make the very 1st rule 

block log all

And delete any non specific blocks further down. 




Greg