Bridging Firewall

OpenBSD 3.0

— Modify files

[ /etc/sysctl.conf ]
net.inet.ip.forwarding=1

[ /etc/rc.conf ]
ipfilter=YES

— start your bridge device
brconfig bridge0 add dc0 add dc1 up

(dc1, dc0) is your NIC device, eg (fx*) is intel pro…

— make your bridge device up at startup

[/etc/hostname.dc0]
up

[/etc/hostname.dc1]
up

[/etc/bridgename.bridge0]
add dc0 add dc1 up

Then see your brige now is ready, and you must use /etc/pfctl.conf to add your rules and use pfctl -R /etc/pfctl.conf to reload your script

View Log?
cat /var/log/pflog | tcpdump -e -ttt -r –