We have created a floating rule that replaces all the per-interface Allow N to any (when N is the interface) with a single allow rule. Since we did not enable the Quick option, it will be invoked after any per-interface rules have been invoked, which is what we want; more specific firewall rules should almost always take precedence over more general rules. Having a single rule to allow outbound traffic from local interfaces will save us the trouble of having to recreate the rule every time we add a new interface (we will just have to edit this rule instead).