On 1/17/06, Bill Marquette <[EMAIL PROTECTED]> wrote: > On 1/17/06, Edmond Dantes <[EMAIL PROTECTED]> wrote: > > I would like to do some content analysis on packets from a user space > > process, > > something like a L7 filter. rdr seems the way to go, but I cannot understand > > how to get the packets back into pf so it can continue with the rules and > > maintain state info. > > > > Suggestions?
dup-to will let you send a copy of packets somewhere, so you won't have to re-inject them. if you really want to inspect, perhaps modify, and re-inject, "man 4 tun" may help you.
