On Tue, 2003-01-07 at 01:02, Jonathan Belson wrote: > Since the machine is a gateway, it has two network cards. Will > 'me' match *both* IP address or just the first one it comes > across? I only really want it to match the IP address of the > external interface, not the internal one.
How about using interface rules since you have 2 network cards? rules to allow stuff local network on fxp0 (internal network) deny from any to any via fxp0 allow stuff via fxp1 (external network) deny from any to any via fxp1 I find this to be easier. -- Khairil Yusof <[EMAIL PROTECTED]>
signature.asc
Description: This is a digitally signed message part
