Today i shut down the last computer in my old flat. I have been using 213.225.30.218 for approximately 6 years and now i have to get used to new IP Addresses :(.
With all my computers in the new flat, it is time for a firewall. Since i now have more than one official IP address i decided to try a combination of if_bridge(4) and PF.
The bridge seems to work fine, but PF sometimes drops TCP packets, it should not drop. Yes even if pf.conf did contain only pass rules. Now i am updating to latest stable hoping for a fix.
Another problem i am struggling, nat from the third interface to bridge0 did not work out ot the box.
Leave a comment