According to: http://www.openbsd.org/faq/pf/tagging.html
it is possible to do ethernet-level pf tagging with OpenBSD's bridge(4) device. Being guilty of not having looked at the code myself, but noting the lack of 'brconfig' ( http://www.openbsd.org/cgi-bin/man.cgi?query=brconfig&sektion=8 ) anyone have any idea of what it would take to get this ported over? e.g. how far has the DF bridge & pf drifted from OpenBSD .. Also, is anyone successfully using PF tagging in their rulesets on DF? (not to imply it's broken, but just wondering..) will probably investigate at some point, just wanted to throw it out there.. Thanks, - Chris
