On Wed, May 20, 2009 at 3:57 AM, Robson Caetano <[email protected]> wrote: > One could in most cases safely uncomment the rules > and things would work. > > The new pf.conf can not be uncommented because it mentions > a macro ($proxy) that has not been defined. > > Moreover, it has no nat rule except for the proxies (relay, > ftp, spamd, etc.). And it suggests no safe filtering policy.
I don't think the sample was ever intended to be used as a uncomment and go default. pf isn't like X, where a default of working is sufficient. If you have to think about what you're doing, I'd say that's an improvement.
