Since I just want to forward everything to a single internal firewall,
I thought that rather than use the M10 rules, I could easily just pinhole
by number - this would get around having to have three rules just for TCP,
etc.

eg The rule:

Name = whatever
Protocol = Other
Protocol Number = 6
Destination = my.firewall.ip

Would forward all TCP traffic, with no holes for your HTTP or telnet
interfaces.

Anyone tried this?

-- 
Glenn Phillips                   glennp@null.net.nz
Technology Addict                Auckland, NZ
Categorizing telnet as a "security risk" is not unlike
referring to Ayers Rock as "big." - Stephan Somogyi 
This message is part of the NZ Broadband mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to majordomo@unixathome.org
with "unsubscribe adsl" in the body of the message