From 0a0fcbf14ca6554f9e8b95a5c42647727046ca67 Mon Sep 17 00:00:00 2001
From: bol-van <none@none.none>
Date: Sat, 9 Mar 2024 12:48:22 +0300
Subject: [PATCH] BSD use SYN,ACK filter to catch autottl

---
 docs/bsd.eng.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docs/bsd.eng.md b/docs/bsd.eng.md
index 4cd8dca..a5598ed 100644
--- a/docs/bsd.eng.md
+++ b/docs/bsd.eng.md
@@ -334,6 +334,7 @@ requires root.
 
 `/etc/pf.conf`:
 ```
+pass in  quick on em0 proto tcp from port {80,443} flags SA/SA divert-packet port 989 no state
 pass in  quick on em0 proto tcp from port {80,443} no state
 pass out quick on em0 proto tcp to   port {80,443} divert-packet port 989
 ```