On 2022-05-13, Marko Cupać <marko.cu...@mimar.rs> wrote: > The only problem I currently have with pfsync is the fact that it does > not synchronise queue membership of states.
IIRC this is meant to work but only if you have identical rulesets, after expanding interface addresses etc. This will require some care in constructing pf.conf - interface groups instead of interface names if nic hw is different - "(self)" or list the addresses of both firewalls instead of using "self" - avoid "antispoof".
