> I have a need to do routing based on source address (not the normal
> destination address) and so am using IPF rules to do this disgusting
> hack.

For what it may be worth, I have a pseudo-interface designed to do
exactly that - route based on ip_src rather than ip_dst.

ftp.netbsd.org:/pub/NetBSD/misc/mouse/patch-tree/src/sys/dev/pseudo/
holds the kernel part (if_srt.* for this stuff) and
.../patch-tree/src/usr.sbin/srtconfig/ holds the userland part.

Of course, I have no idea how hard it'd be to drop that into whatever
version you're using; it may be that sticking with ipf, disgusting as
it may be, is the Right Thing for you.

/~\ The ASCII				der Mouse
\ / Ribbon Campaign
 X  Against HTML	       mouse@rodents.montreal.qc.ca
/ \ Email!	     7D C8 61 52 5D E7 2D 39  4E F1 31 3E E8 B3 27 4B