i try to use the grouping feature with Netbsd 2.0 but it seems to be broken:
:~> cat /etc/ipf.conf: pass out quick on lo0 all pass in quick on lo0 all pass in quick on ex0 all pass out quick on ex0 all pass in quick on pppoe0 all head 150 pass out quick all group 150
I think in and out rulesets have distinct groups. You would have to define a 150 out group before you can refer to it.
Or maybe I'm wrong. Wouldn't be the first time.
-- Jefferson Ogata <[EMAIL PROTECTED]> NOAA Computer Incident Response Team (N-CIRT) <[EMAIL PROTECTED]>
