Chen Xu wrote:
You use "in via $pif", I'm not 100% sure but I think you should only use
$cmd 100 divert natd ip from any to any in via $pif
$cmd 101 check-state
# Authorized inbound packets
$cmd 421 allow tcp from any to 192.168.1.10 80 in via $pif setup limit
I think it's bad to use statefull rules for inbound connections.
email@example.com mailing list
To unsubscribe, send any mail to "[EMAIL PROTECTED]"