On Tue, Jul 28, 2009 at 06:10:26PM -0500, Andres Salazar wrote: > Hello Jason, > > Thank you for assisting me getting this together.. > > I do understand that translation happens before filtering (at least > think i do), what I dont understand is why the filtering is done with > "pass in" if traffic is actually going from within the int_if2 network > to the outside? Where is the traffic actually going "in"?
PF filtering is done from the "perspective" of the firewall. If you imagine yourself as an inanimate object with a couple interfaces allowing traffic inbound and outbound, you're there. ;) -- Jason Dixon DixonGroup Consulting http://www.dixongroup.net/
