From 760e51f118f5d1ab235bb0efcc5b50909ec392a5 Mon Sep 17 00:00:00 2001
From: mcbride <>
Date: Sat, 7 Oct 2006 01:50:22 +0000
Subject: [PATCH] 'keep state' is now default, and use 'no state' where
 intended.

---
 src/etc/pf.conf | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/src/etc/pf.conf b/src/etc/pf.conf
index f41c2557..4cf9c0d7 100644
--- a/src/etc/pf.conf
+++ b/src/etc/pf.conf
@@ -1,4 +1,4 @@
-#	$OpenBSD: pf.conf,v 1.31 2006/01/30 12:20:31 camield Exp $
+#	$OpenBSD: pf.conf,v 1.32 2006/10/07 01:50:22 mcbride Exp $
 #
 # See pf.conf(5) and /usr/share/pf for syntax and examples.
 # Remember to set net.inet.ip.forwarding=1 and/or net.inet6.ip6.forwarding=1
@@ -25,11 +25,11 @@
 
 #anchor "ftp-proxy/*"
 #block in
-#pass out keep state
+#pass out
 
-#pass quick on $int_if
+#pass quick on $int_if no state
 #antispoof quick for { lo $int_if }
 
-#pass in on $ext_if proto tcp to ($ext_if) port ssh keep state
-#pass in log on $ext_if proto tcp to ($ext_if) port smtp keep state
-#pass out log on $ext_if proto tcp from ($ext_if) to port smtp keep state
+#pass in on $ext_if proto tcp to ($ext_if) port ssh 
+#pass in log on $ext_if proto tcp to ($ext_if) port smtp 
+#pass out log on $ext_if proto tcp from ($ext_if) to port smtp