packet tagging
Peter N. M. Hansteen
peter at bsdly.net
Thu May 9 12:29:57 UTC 2013
Nomad Esst <noname.esst at yahoo.com> writes:
> Should the system act as a bridge in order to do the tagging or is it
> (bridge) just used to do the tagging regardless of the system rule?
You can tag packets on incoming and filter on the tags later in your
ruleset in non-bridge configurations too. But of course bridges have
their own tagging and filtering facilities that may be combined with PF
features.
--
Peter N. M. Hansteen, member of the first RFC 1149 implementation team
http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/
"Remember to set the evil bit on all malicious network traffic"
delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
More information about the freebsd-pf
mailing list