On Mon, 4 Nov 2013 16:05:38 +0100
Marc Sontowski <marc_at_sontowski.net> wrote:
> # Pass all traffic to and from the local network, using quick so that later
> # rules are not evaluated if a packet match this. Some rulesets would restrict
> # local traffic much further
> pass quick on $int_if all
As comment says, quick keyword makes later rules being not evaluated if
a packet match this. Try to add:
> pass in quick on $ext_if proto tcp from 192.168.2.0/24 to port www divert-to 127.0.0.1 port 3128
above line that passes all quick on $int_if.
-- Marko CupaćReceived on Mon Nov 04 2013 - 15:33:41 MST
This archive was generated by hypermail 2.2.0 : Mon Nov 04 2013 - 12:00:08 MST