Jesse Peterson wrote:
* Is there a way to affect the order in which the interface rules are
written? (Ie, have the LAN (or any other) interface rules written to the PF
conf file first rather than the WAN [or any other arbitrary ordering])
No, nor is it necessary with the current rules methodology in the GUI.
* Is there a way to have hand-written custom rules? Ideally the
location/ordering of said rule would be customizable.
no
* Is there a way to have a rule that spans multiple interfaces (Ie, LAN, OPT1, OPT2,
"any", etc.). Ordering/location would be important for this.
no
* Is there a way to have rules based on outgoing packets from an interface?
I know you can put a rule on the destination interface, but this is a fair bit
of flexibility absent.
no
There was a long, long thread on rule methodology a few months back -
suffice it to say if you require any/all of the above, you really just
need to run a stock *BSD with pf. The existing rule methodology may
change in the future, but don't count on it, and it certainly won't
happen any time soon.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
