1ext_if="lo0" 2 3# OPTIONS, -O 4set loginterface $ext_if 5set timeout tcp.established 3600 6set limit states 100 7set optimization normal 8set block-policy drop 9set require-order yes 10 11# QUEUEING, -A 12altq on $ext_if priq bandwidth 10Mb tbrsize 1824 \ 13 queue { pri-low pri-med pri-high } 14queue pri-low priority 0 15queue pri-med priority 1 priq(default) 16queue pri-high priority 2 17 18# FILTER, -R 19match in on $ext_if inet from any to any rdr-to 127.0.0.1 20match out on $ext_if inet from any to any nat-to 127.0.0.1 21match on $ext_if inet from 192.168.0.0/24 to 192.168.0.1/24 binat-to 192.168.0.3/24 22pass out on $ext_if proto tcp from any to any port 22 keep state \ 23 queue(pri-med, pri-high) 24pass out on $ext_if proto tcp from any to any port 80 keep state queue pri-med 25pass in on $ext_if proto tcp from any to any port 80 keep state queue pri-low 26