[prev in list] [next in list] [prev in thread] [next in thread] 

List:       openbsd-misc
Subject:    Re: pfctl, counters, labels, and a headache.
From:       Emerson Farrugia <efarrugi () gmu ! edu>
Date:       2005-02-21 3:30:51
Message-ID: 421955EB.2010407 () gmu ! edu
[Download RAW message or body]

According to the FAQ, when you keep state for inbound traffic, you're
automatically setting up the reverse rules for outbound traffic. I think 
having
two separate rules would actually prevent me from keeping state and have
adverse effects on performance. As for the statistics part, though, you
may well be right. I just hope Henning and the rest chime in to clear 
this up.

Thanks for the suggestion.

-Emerson

Jet Nul wrote:

>Hi Emerson,
>It seems to me that your 3 rules all relate exclusively
>to inbound traffic -- if you want seperate stats for in
>and out you'll want 3 more rules in the other direction?
>Probably I am missing the point, but on the chance this
>helps, there you have MHO.
>-Jet

[prev in list] [next in list] [prev in thread] [next in thread]