Hi all.

I'm trying to allow inbound connections on a range of ports.
I am using groups and my group starts like this:

block in on hme0 proto tcp from any to any head 10

I'm able to accept mail thusly:

pass in quick proto tcp from any to 24.61.189.164/32 port = 25 group 10

and ssh:

pass in quick proto tcp from any to 24.61.189.164/32 port = 22 group 10

and http:

pass in quick proto tcp from any to any port = 80 group 10

but I am unable to open up 6881 --> 6999 using this rule:

pass in quick proto tcp from any to any port = 6881 >< 6999 group 10

/etc/rc.d/ipfiter reload tells me the syntax is wrong.

Do I need a new group or what?

-- Matt

--