In some email I received from Crist J. Clark, sie wrote: > On Thu, Jun 13, 2002 at 12:06:38PM -0700, Paul B. Henson wrote: > > On Thu, 13 Jun 2002, Crist J. Clark wrote: > > > > > > I need transparent bridging, which historically only OpenBSD supported. I > > > > understand the development version of FreeBSD is supposed to support > > > > bridging under ipf, but I don't think a stable version does so. > > > > > > Feel free to try out the patches for 4-STABLE. Let me know if there > > > are any problems. > > > > > > http://people.freebsd.org/~cjc/ > > > > it looks like the current implementation only supports filtering on the > > "in" direction? Any plans to implement "out" filtering as now supported in > > OpenBSD? > > No real plans. I haven't had time to work on it for a long time. The > only really good reason to process both in and out packets that I am > aware of is to be able to use the proxies. Do you have in mind another > good reason to be able to filter 'out' packets in the bridge?
Why do you do out filtering on a normal firewall ? I don't understand why anyone would only ever want to do inbound-only. Darren
