Am Tue, 12 Sep 2006 13:14:13 -0300 schrieb <[EMAIL PROTECTED]>:
> 19 # ALLOW $PC ACCESS HTTP SERVICE > 20 pass out on $ext_if from $PC to any port 80 keep state You are doing nat. nat occures before filter rules so you have to change the rule to the following: pass out on $ext_if from ($ext_if) to any port 80 keep state don't forget to allow dns. and it is also helpful to see which packets are blocked: tcpdump -nqei pflog0 By joerg
