On Monday 11 October 2004 23:56, Paul Hodges wrote: > > So you can't use 'tagged' here. I think from the pf point of > > view it wouldn't make too much sense anyway, because rdr happens > > before anything else -- so there actually can't exist any rule > > which would have already tagged the packet. > > In a bridge a packet can be tagged before it reaches pf, can't it?
You can play with the fact that there are more than one interface ;-)
Ed
