Handle default 'flags S/SA keep state', 'no state' and 'flags any'.

1 files changed, 6 insertions, 6 deletions

diff --git a/regress/sbin/pfctl/pf7.ok b/regress/sbin/pfctl/pf7.ok
index 8af3a52d37d..357f3180e30 100644
--- a/regress/sbin/pfctl/pf7.ok
+++ b/regress/sbin/pfctl/pf7.ok
@@ -14,14 +14,14 @@ pass out on tun1000000 inet proto icmp all icmp-type echoreq code 0 keep state
 pass in on tun1000000 inet proto icmp all icmp-type echoreq code 0 keep state
 pass out on tun1000000 proto udp all keep state
 pass in on tun1000000 proto udp from any to any port = domain keep state
-pass out on tun1000000 proto tcp all modulate state
-pass in on tun1000000 proto tcp all modulate state
+pass out on tun1000000 proto tcp all flags S/SA modulate state
+pass in on tun1000000 proto tcp all flags S/SA modulate state
 pass in on tun1000000 proto udp all keep state
 pass in on tun1000000 proto icmp all keep state
 pass in on tun1000000 proto udp all keep state
 pass in on tun1000000 proto tcp all flags S/SA synproxy state
 pass in on tun1000000 proto icmp all keep state
-pass in on tun1000000 proto tcp from any to any port = ssh modulate state
-pass in on tun1000000 proto tcp from any to any port = smtp modulate state
-pass in on tun1000000 proto tcp from any to any port = domain modulate state
-pass in on tun1000000 proto tcp from any to any port = auth modulate state
+pass in on tun1000000 proto tcp from any to any port = ssh flags S/SA modulate state
+pass in on tun1000000 proto tcp from any to any port = smtp flags S/SA modulate state
+pass in on tun1000000 proto tcp from any to any port = domain flags S/SA modulate state
+pass in on tun1000000 proto tcp from any to any port = auth flags S/SA modulate state