for some weeks now I've been trying to upgrade my firewall's kernel
to 1.3-current to get UVM. (UVM is a LOT more reliable than 1.3.2.
1.3_Alpha was the last kernel that was really reliable for me)
  Anyway, I couldn't figure out why IPfilter wasn't... 

  Someone defopt'ed PFIL_HOOKS, but appears to have not updated
ip_fil.h to properly include it. A symptom is:

/usr/src/sys/netinet/ip_fil.c:196: warning: function declaration isn't a prototype

  Anyway, I have 3.2.10beta working with 1.3H. If desired, I will submit
a PR to NetBSD with -current to IPF 3.2.10beta patches. Darren, I did:

*** /j/src/ip_fil3.2.10beta/ip_fil.h    Sat Jun  6 10:36:49 1998
--- ip_fil.h    Thu Sep 17 11:04:23 1998
***************
*** 12,17 ****
--- 12,21 ----
  #ifndef       __IP_FIL_H__
  #define       __IP_FIL_H__
  
+ #if defined(__NetBSD__)
+ #include "opt_pfil_hooks.h"
+ #endif
+ 
  /*
   * Pathnames for various IP Filter control devices.  Used by LKM
   * and userland, so defined here.
***************
*** 393,399 ****
  extern        int     iplclose __P((dev_t, int));
  #else /* #ifndef _KERNEL */
  # if defined(__NetBSD__) && defined(PFIL_HOOKS)
! extern        int     ipfilterattach __P((int));
  # endif
  extern        int     iplattach __P((void));
  extern        int     ipl_enable __P((void));
--- 397,403 ----
  extern        int     iplclose __P((dev_t, int));
  #else /* #ifndef _KERNEL */
  # if defined(__NetBSD__) && defined(PFIL_HOOKS)
! extern        void    ipfilterattach __P((int));
  # endif
  extern        int     iplattach __P((void));
  extern        int     ipl_enable __P((void));