On 5/19/06, Travis H. <[EMAIL PROTECTED]> wrote:
On 5/18/06, Daniel Hartmeier <[EMAIL PROTECTED]> wrote:
> > set skip on lo0
> > set skip on $pfsync_if # might not want this
>
> These two lines don't add up, the second one replaces the first,
> so lo0 is not really skipped. Use a single set skip line, listing
> all interfaces to be skipped at once.
Ah, that should be in the PF docs.
I was doing the same thing with lo0 and enc0.
No, OP was right after all.
set skip on interface
Skip all PF processing on interface. This can be useful on loopback
interfaces where filtering, normalization, queueing, etc, are not
required. This option can be used multiple times. By default this option
is not set.
I tried various ways of specifying two interfaces on that line... it
doesn't work.
--
"Curiousity killed the cat, but for a while I was a suspect" -- Steven Wright
Security Guru for Hire http://www.lightconsulting.com/~travis/ -><-
GPG fingerprint: 9D3F 395A DAC5 5CCC 9066 151D 0A6B 4098 0C55 1484
