Also as you have indicated that these are LAN's (ie Internal). What I do is create a Group called Internal Access Group. Add all the Internal networks to this group. Them you only have to have one masq rule with this group, one entry for DNS, also you can make common firewall definations across networks. For Firewall Rule's I make a OK Group with all the common rules in one group. Hope this helps Mark
↧