On Tue, Jun 24, 2003 at 02:43:50PM -0700, Trevor Talbot wrote: > OpenBSD's ssh uses the old IPv4 TOS field, and sets it to "lowdelay" > for interactive sessions. It only decides they're interactive after > the initial connection setup and login. pf uses the priority queue > for tos-lowdelay packets.
It's not a bug, it's a feature :) This allows you to give higher priority to interactive ssh connections (as compared to non-interactive ones, like scp). If you don't want to make that distinction (and queue every ssh packet into ext_def), don't specify a priority queue on those pass rules. If you specify both queues in the pass rule, packets with TOS lowdelay and empty TCP ACKs should go into the second queue, everything else into the first. Daniel
