Hi there, I think I've found a bug in the rc scripts on 1.5.3RC_2?

What seems to happen is that if you restart ipfilter
after a ruleset change, using '/etc/rc.d/ipfilter restart'
the NAT tables are flushed but not repopulated.

My kernel possibly isn't exactly in step with world, since I just
restored from backup, but nat and ipf seems ot work fine normally, so my hunch is 
it's a problems with the rc scripts themselves - can anyone else confirm this
before I send-pr?

Here's my output:

-----------8<----------------------------------------
# ipnat -l
List of active MAP/Redirect filters:
map ep0 10.4.0.0/29  -> 0.0.0.0/32
map ep0 10.4.0.0/29  -> 0.0.0.0/32  proxy port ftp ftp/tcp
map ep0 10.4.0.0/29  -> 0.0.0.0/32  portmap tcp/udp 40000:60000

List of active sessions:
# /etc/rc.d/ipfilter restart
Disabling ipfilter.
Enabling ipfilter.
# ipnat -l
List of active MAP/Redirect filters:

List of active sessions:
# /etc/rc.d/ipnat restart
0 entries flushed from NAT table
3 entries flushed from NAT list
Installing NAT rules ... 0 entries flushed from NAT table
# ipnat -l
List of active MAP/Redirect filters:
map ep0 10.4.0.0/29  -> 0.0.0.0/32
map ep0 10.4.0.0/29  -> 0.0.0.0/32  proxy port ftp ftp/tcp
map ep0 10.4.0.0/29  -> 0.0.0.0/32  portmap tcp/udp 40000:60000

List of active sessions:
-----------8<----------------------------------------

Cheers!

-- 
Rasputin :: Jack of All Trades - Master of Nuns