> > > This would do it with my example. In real life I have subnets from 10/8 and > > 172.16/12 range. So this workaround is unfortunately not possible. > > It might possibly work with 0.0.0.0/0 (though obviously this requires > more care with pf rules). I've done similar but it fits into 192/6 so it > avoids the possible corner case of a /0 prefix length.
​Because of more complexity in pf rules I so far avoided to use 0.0.0.0/0. But this will be the next step in my tests. Thanks.
