Alexandr Nedvedicky wrote:
> it is, however -Fall operates on main ruleset only. -Fall also does
> not reset limits and timeouts. Hence my first idea was to introduce
> '-FNuke', which kills all rulesets and tables.
>
> I don't want to change behaviour of existing option ('-Fall'), therefore
> I'm in favor to introduce a new option. Either '-FNuke' or '-U' works
> for me. I'm the most concerned about flushing all rulesets.
Is the existing behavior intentional or an oversight? I don't know when I
would want to use -Fall, but keep the old timeouts, and depend on that. I'd
guess most people using -Fall are keeping old timeout only by happen stance,
and not because they desire that.
In any case, if you're seeking input on the name, something like -Freset says
to me that it resets pf back to its initial state.
