Hello all, I've RTFM (man pf.conf) and found this :
"Only TCP and UDP packets can be associated with users; for other protocols these parameters are ignored."
But I'm pretty sure it was working before the upgrade from 4.0 to 4.1, then 4.2, then 4.3 (in fact, what caught my attention is that Nagios started to complain that my servers were unreachable). I've changed the rules to permit only outgoing ICMP echoreq with keep state for everybody, but I used to have a "... proto icmp ... user _nagios" in place and wonder why this doesn't work anymore.
Could someone enlighten me about why this feature was removed/changed? Thanks.-
