ok. i set up a guy at work with a working setup for a transparent bridge. He started mucking around with rules to try and debug another guys setup he knows and messed it up. To try and fix this, he just made a real basic pf.conf

scrub in all
pass in all
pass out all

This is not working for the bridge though. Does anyone know if you have to specify the interfaces for a bridge? Thats the only thing i could come up with since this should basically allow anything.

did you bring up the bridge interface?
Is it set to come up automatically?

Yes, the bridge was up and set correctly. The only file he changed from a known "good" working setup was the pf.conf

specify the interfaces. Filter on only one of the interfaces.

like so.

pass in quick on $ext_if all
pass out quick on $ext_if all

block in log on $int_if all

additional rules here.


for your testing purposes, just pass in and out on all interfaces.

Thats what i thought could be the problem, but wasnt sure since the default pf.conf will work fine w/o specifying interfaces. Maybe a bridge only thing?