On Thu, 14 Jul 2011 14:39:50 +0200 Henning Brauer <lists-openbsdt...@bsws.de> wrote:
> * Vadim Zhukov <persg...@gmail.com> [2011-07-11 01:23]: > > On Monday 11 July 2011 03:04:11 jirib wrote: > > > Hello, > > > > > > what do you think about having automatical label for defualt > > > route - named 'default' for example? > > > > > > I was just trying how to block via pf some traffic which is not > > > on my lan and 'from route "default"' works nice. > > > > > > Of course I can set it manually, but I was curious ;) > > > > "block on egress ..." ? > > that is not the same. that will catch (block in this case) all traffic > on the interface(s) the default route(s) point to, wether it matched > the (really a) default route or a more specific. > Yes, and if (as me) somebody has on iface then it is egress all the time :) jirib
