** Reply to message from Ryan Corder <[EMAIL PROTECTED]> on
Fri, 16 Mar 2007 14:01:38 -0500
>very simply, this thread could have ended a day or two ago if the
>following process would have taken place:
>
>1) is my syntax wrong? YES
>2) OK, what is wrong with it? Pointed out and understood.
Evidently, *not* understood.
>3) Good, now what is the correct syntax?
>
>number 3 is where we sit. I understand that the {} syntax is for text
>expansion. What I don't understand is whether when someone use {}, is
>the list evaluated as a logical AND or a logical OR?
Neither. It does text expansion, as several people have already told
you. *All* it does is transform one rule into several rules;
evaluation is exactly the same as if the original ruleset included the
resulting rules -- there's no AND or OR involved. The *effect* (in
this case) is the same as if the {} construct were evaluated as an OR
within a single rule, but that's not how it's implemented.
Dave
PS: I'm definitely *not* a pf/pfctl expert, but I believe that I do
understand how this bit of it works. If I'm wrong, I'm sure that I'll
be corrected quickly.
--
Dave Anderson
<[EMAIL PROTECTED]>
