On 9/21/2013 2:19 AM, Alexander Gitter wrote: > I noticed that non-quick floating rules on the LAN interface are > basically ignored if you have the "Default allow LAN to any rule" > enabled. The reason for this is that the default rule is marked as > quick (as are all rules in the LAN tab). > > Wouldn't it be better to have that default rule at the beginning of > the floating rules?
The way it is now is the safest default that would not be confusing for new users in a default configuration. What it does is clear and obvious and not tucked away on a separate tab. Most people don't use nor know what floating rules are yet. But if you choose to have a setup like you're crafting, you can certainly make your own default LAN rule be non-quick at the top of the floating rules. Jim _______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
