Thus spake Biswajit Tripathy ([EMAIL PROTECTED]) [26/08/03 15:41]: > > block in log on le1 from any to any > > > > pass out quick on le1 proto gre from any to any keep > > state > > Isn't this line supposed to give a syntax error? > Something like "Can only use keep state > with TCP/UDP/ICMP".
Nope. I can use 'keep state' with TCP, UDP, ICMP, GRE, and IPIP. The only difference is that I want to specify 'flags S' for TCP, but not for the others. - Damian
