Would love it if someone could share a thought on how to handle this--can't seem to think up a way to do this simply...
On Tue, Mar 23, 2010 at 7:54 PM, Daniel Melameth <dan...@melameth.com> wrote: > Using the example from the PF User's Guide > (http://www.openbsd.org/faq/pf/pools.html#outgoing), what's the best way to > kill all states related to ONE of the route-to interfaces created by the > "pass in on $int_if route-to { ($ext_if1 $ext_gw1), ($ext_if2 $ext_gw2) > }..." rule? It is a simple thing to kill interface-specific states > generated by the related "pass out on $ext_ifx route-to..." rules, but I'm > uncertain of the best way to do this for the first rule. > > I've also considered using rules using the probability option instead of > route-to to more easily handle this, but using probability prevents the use > of sticky-address in this situation. > > Thanks.
