Hi

Tried sending this one into NetBSD-help the other day.  Not seen=20
anyone reply and so thought this list might be more appropriate.

Looking further into my own IPF configuration I find that I would like=20
to understand some more about the syntax. If I have a rule which says,=20
for example....

block in log quick on ippp0 proto tcp from any to 10.0.0.0/24 port 136 >< 1=
40

where 10.0.0.0/24 is an internal network is it better to write it=20
this way around ? .........

block in log quick on ippp0 proto tcp from any to any port 136 >< 140

Similarly if I were to use some of the IANA address ranges.. is=20
this...

block in log quick on ippp0 from 7.0.0.0/8 to 10.0.0.0/24=20

better than using this..

block in log quick on ippp0 from 7.0.0.0/8 to any

=C2=A0remembering that this is a dial up ISDN firewall box with proxyig
enabled.   I'm a bit confused about this and so any help would be=20
greatly appreciated.=20

Thanks





Richard