192.168.0/24 is on the bogon list: it is part of 192.168/16. (basic IP theory) 'block in quick from <bogons>" will drop all 192.168.*.* traffic.
You do not want the bogon filter on your internal interface, as your private netspace must be on the bogon list. That line should be "block in quick on $ext_if from <bogons>"
__________________
The only dumb question is a question not asked.
The only dumb answer is an answer not given.
Last edited by robbak; 25th May 2008 at 08:46 AM.
Reason: spelling.
|