From eecf34b517b59ee6a81e8ad1dcce33f19adf1d32 Mon Sep 17 00:00:00 2001
From: Timo Makinen <tmakinen@foo.sh>
Date: Thu, 23 May 2019 17:31:53 +0300
Subject: [PATCH] fix outside connectivity when default route goes through
 internal network

---
 roles/pf/files/pf.conf.gw_home | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/roles/pf/files/pf.conf.gw_home b/roles/pf/files/pf.conf.gw_home
index 3af990f..ccead9b 100644
--- a/roles/pf/files/pf.conf.gw_home
+++ b/roles/pf/files/pf.conf.gw_home
@@ -54,8 +54,9 @@ block in quick from any to self
 # allow communication from internal to world
 pass in quick on $int_if from $int_net to !$int_net
 
-# allow myself to communicate outside
+# allow myself to communicate outside (both routes)
 pass out quick on $ext_if from self to any
+pass out quick on $int_if from self to any
 
 # allow traffic from outside
 pass out quick on $int_if from any to $int_net