hehe..
> that this method would be 90 times easier then ipfwadm with the 300 diff
> -options and its much easier to access/change the list then ipfwadm. I
> think the program should be run like inetd.conf, where u need to kill -HUP
> <whatever ps> to refresh it.
> I'd just like something similar or better then this implemented in
> an upcoming *stable* kernel version. Send me your comments/suggestions...
It isnt a kernel issue. ipfwadm is a user program. Nothing stops you writing
the tool you describe and without rewriting any kernel code.
Alan