Jordi Espasa Clofent <[email protected]> writes: > Altought, the problem comes when it try to enable PF. I don't know why > but I've the suspicion that it's an VLAN related issue.
I think that you need to filter on vlan interfaces. From what I remember, the vlan-tagged traffic passing through the same interfaces will not be filtered at all if you specify the physical interfaces. Basically, create /etc/hostname.vlan0 and /etc/hostname.vlan1 like this: vlan 1 vlandev em0 up vlan 1 vlandev em1 up Then add vlan0 and vlan1 to the bridge instead of the actual interfaces, and filter on vlan0, vlan1 in your pf.conf, just like you would for regular interfaces. -- Arcady Genkin : CDF Systems Administrator http://www.cdf.toronto.edu/~agenkin/
