setagllib@optusnet.com.au wrote:

>By some remarkable coincidence security/pflkm appeared in pkgsrc today, so I tried
>it. Installed and loaded fine, but regardless of what rules I try (including
>default), any NATted operation (i.e. anything happening on my client machines
>through the pf gateway) is amazingly slow and likely to fail. DNS lookups can take 5
>seconds, page loads for even Google can take longer if they work at all, and so on.
>This does not happen from the gateway itself, nor did it happen with ipfilter.
>  
>
No takers at all? Any? Gah, don't make me run OpenBSD just for the 
packet filter :)