On Fri 03 Oct 2014 at 16:25:58 +0200, Zoran Kolic wrote: > On freebsd I use ipfw, with rules that first one wins. > On pf I know that the last one wins. Cannot be so sure > reading npf howto. My bet is that the last wins too. I've never understood the reason for "last one wins". That seems like unnecessary work, checking all those rules that may or may not be winning in the end. And you can get the same effect with a "first one wins" system (hence more efficiently) if you simply reverse the order of the rules. -Olaf. -- ___ Olaf 'Rhialto' Seibert -- The Doctor: No, 'eureka' is Greek for \X/ rhialto/at/xs4all.nl -- 'this bath is too hot.'
Attachment:
pgpSkENzZkrEA.pgp
Description: PGP signature