pf scrub (3.8)

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

pf scrub (3.8)

J.D. Bronson
I was wondering if this setup is OK or totally wrong...

/etc/pf.conf:

# bge0 = int_inf (LAN)
# bge1 = ext_inf (WAN)
scrub on bge0 reassemble tcp no-df random-id fragment reassemble
scrub on bge1 reassemble tcp no-df random-id fragment reassemble


I am not sure if this is double redundant or anything and was
wondering. Nothing seems to be a problem though...

-JD