I have noticed that incoming UDP traffic from programs like Kazaa are able to slip right through PF. I pass all outgoing traffic on the firewall (TCP/UDP) and block most everything coming in except for a couple of services (none of which use UDP). Am I correct in thinking that the reason this traffic is able to slip through is because I use keep state on all my outgoing UDP traffic and in order to stop this from happening I would need to create a separate rule for outgoing Kazaa UDP traffic without keeping state? Or, am I completely off base and there is another reason for it?
--- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.389 / Virus Database: 220 - Release Date: 9/16/2002
