From 4044c2a7069b3875521575f94db6ed4e2ed7ede6 Mon Sep 17 00:00:00 2001
From: Timo Makinen <tmakinen@foo.sh>
Date: Thu, 22 Apr 2021 20:41:25 +0000
Subject: [PATCH] Allow TFTP to gw hosts

---
 roles/pf/files/pf.conf.gw_home | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/roles/pf/files/pf.conf.gw_home b/roles/pf/files/pf.conf.gw_home
index 21a4824..89f0a92 100644
--- a/roles/pf/files/pf.conf.gw_home
+++ b/roles/pf/files/pf.conf.gw_home
@@ -51,6 +51,9 @@ pass in quick on $int_if proto tcp from $int_net to self port 4949
 # allow dns queries from internal net
 pass in quick on $int_if proto { tcp, udp } from $int_net to self port domain
 
+# allow tftp from internal net
+pass in quick on $int_if proto udp from $int_net to self port tftp
+
 # block rest of packets coming to me
 block in quick from any to self