hi guys. when the pflow option first appeared, i was surprised by the stupidity of those who implemented it- pflow could not be specified for block-rules, i.e. dropped packets were not taken into account. as a result of this approach, the usefulness of pflow sought to zero for those cases where traffic really had to be counted. but then i found the way out- the default blocking rule first duplicated packets on a special, only for this created localhost, which had only one rule - receiving all incoming packets and the pflow option set, this allowed to take into account dropped packets too. now i updated system, and saw that the low level taken by developers fell even lower- now it is impossible to specify dub-to for block-rules. i dont know how to get around this now, im a simple user and tired of fighting hands-from-ass developers. can anyone share their hacks for this?
ps: sry for my english
