>Yes, PF will optimize with skip steps. >But with "large number of IP's", tables will be much more efficient.
Like this?
table <SERVERS> {192.168.0.10, 192.168.0.12, \
192.168.0.32/28, 192.168.0.96/28}
PORTS = "{ftp, smtp, http, https, pop3}"
pass in on xl0 proto tcp from any to <SERVERS> port = $PORTS flags S/SA
keep state
Should I use persist in this case?
