If I understand correctly, the actual interface to which the DHCP
service is bound gets an IMPLICIT (hidden) pass rule.
HOWEVER, I have a log&pass rule defined during DHCP activity. I see the
states, and see the LOGS for the DHCP conversations, (wireshark etc),
but the pass rule is not being hit.
This suggests the implicit rules are evaluated BEFORE the explicit
rules. Is there a good reason they're evaluated first? I'd expect them
to be after to allow for debugging, logging, blocking, etc.
_______________________________________________
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold
