Hi all,
I started to use OpenBSB and PF a few weeks ago, and I must say I'm
really satisfied with this. The anchor system is definitely a nice
feature!
However, in the beginning, I've had some hard time debugging my fw
rules, when anchors were involved. So I've tried to add an "anchor
expansion op
I like the idea (as I suggested that before:
http://marc.theaimsgroup.com/?l=openbsd-pf&m=105215655418099&w=2) Somehow
Henning didn't like the idea back then, and as I got my rules working w/o I
did not implement it.
Vincent's patch might need some minor improvements and changes, but the idea
is ri
On Mon, Sep 01, 2003 at 01:13:20AM +0200, Max Laier wrote:
> I like the idea (as I suggested that before:
> http://marc.theaimsgroup.com/?l=openbsd-pf&m=105215655418099&w=2) Somehow
> Henning didn't like the idea back then, and as I got my rules working w/o I
> did not implement it.
> Vincent's pat
According to Henning Brauer:
> yes, the goal is valid, I don't like the implementation too much.
> using an extra flag to show the anchor stuff is a idea worth thinking
> about - but then, there's something else in the queue for post-3.4
> that might solve this much more elegant ;-) plese note t
On Tue, Sep 02, 2003 at 10:26:46PM +0200, vg wrote:
> Is it possible to know a little more about it, or maybe am I just too
> curious ?
Well, one idea we never followed was allowing to populate anchors from
within the main ruleset, for instance
anchor foo {
bar {
block from 10.1.2.3
