/etc/pf.conf
int_if="sis1" ext_if="sis0" wi_if = "wi0" auth_web="192.168.27.20" table <authpf_users> persist nat on $ext_if from $wi_if:network to any -> ($ext_if) rdr on $wi_if proto tcp from any to $myaddr port $tcp_in -> $server rdr on $wi_if proto udp from any to $myaddr port $udp_in -> $server rdr on $wi_if proto tcp from ! <authpf_users> to any \ port 80 -> $auth_web nat-anchor "authpf/*" binat-anchor "authpf/*" rdr-anchor "authpf/*" block all anchor "authpf/*" in on wi0 pass in on $wi_if inet proto tcp from any to $auth_web \ port 80 keep state pass in on $wi_if inet proto udp from any port 53 keep state pass in on $wi_if inet proto udp from any to $wi_if port 67 pass in on $wi_if inet proto tcp from any to $wi_if \ port 22 keep state