David Hill <[EMAIL PROTECTED]> writes:
> nat on sis0 inet from ! sis0:0 to any -> (sis0)
This sounds a bit too inclusive for my tastes. I assume the address
range your DHCP deamon uses is known as well as the fixed addreses, so
why not use those instead, ie
myranges = { 192.168.100.0/24, 192.168.101.0/24 }
nat on $ext_if from $myranges to any -> ($ext_if)
just my NOK 0.02
--
Peter N. M. Hansteen, member of the first RFC 1149 implementation team
http://www.blug.linux.no/rfc1149/ http://www.datadok.no/ http://www.nuug.no/
"First, we kill all the spammers" The Usenet Bard, "Twice-forwarded tales"
