Improving FreeBSD's pf

Solved and closed:

• On state creation src_node is looked up twice.
• route-to rule passes traffic when no targets are specified.
• Route-to rule forwarding traffic inspite of state limit.
• Removing pf Source entries locks kernel.
• IPv6 and synproxy don't play well together
• Count global pf(4) statistics in counter(9).

Solved and waiting for aproval:

• Synproxy not working with route-to.

Not yet solved:

• Traffic dropped by accepting rules is not counted.