According to Hans J. Albertsson: > > I REALLY think you need to write this facility into ipfilter/ipnat IF > you are to use continuation lines.
I don't know if m4 supports anything that would help but I currently use it to build my ip.rules and keep them simpler. Somehow I think m4 is obtuse enough that something could be hacked to get that :) Here is an example of the stuff I do with mine to keep the files cleaner. # BEGIN ----- dynamic rules port 25 include(`./mail.m4') # END ----- dynamic rules port 25 where mail.m4 are just the rules that are created on the fly from MTA attacks. I have a little perl script that uses the Cache::Cache module and does automatic aging of bad ip's to build my rules for any problem ip's discovered from my MTA logs. Jim
