I've just upgraded my firewall to 4.1.  The firewall runs spamd, and 
redirects connections (that don't go to spamd) to a server behind the 
firewall.

I modified my pf.conf per the sample in the spamd(8) man page.  It's a 
couple of days later, and suddenly I realize that I'm only getting mail 
that's explicitly in my whitelist, from this rule:

rdr on $ext_cable proto tcp from <spamd-mywhite> to port smtp -> $mail 
port 25

I'm thinking my problem is the "no rdr" rule, maybe that's preventing 
the smtp connections from getting redirected.  Here's all my 
smtp-related rdr rules:


rdr on $ext_cable proto tcp from <spamd-mywhite> to port smtp -> $mail 
port 25

no rdr on $ext_cable proto tcp from <spamd-white> to any port smtp

rdr pass on $ext_cable proto tcp from any to any port smtp -> 127.0.0.1 
port spamd

# Send smtp to mail server
rdr on $ext_cable inet proto tcp from any to any port  25 -> $mail port 25


So, what's my best solution?  Would changing the "no rdr" to a rdr -> 
$mail do what I want, or would I be better off moving spamd to my mail 
server?