This was the problem:
>>Just replace <> with ><.
tcp 3.3.0.10:12002 <- 2.2.20.0:2913 ESTABLISHED:ESTABLISHED
[498402552 + 63219] [922621281 + 63919]
age 00:03:52, expires in 23:59:56, 207 pkts, 42135 bytes, rule 43
@43 pass in inet proto tcp from any to any port 5799 <> 5811 keep state
Should have been these:
@32 pass in on fxp1 inet proto tcp from 3.3.0.0/16 to 2.2.0.0/16 port = nameserver keep state
@33 pass in on fxp0 inet proto tcp from 2.2.0.0/16 to 3.3.0.0/16 port = nameserver keep state
Thanks men, learned a lot again.
Pete
