ipf question

[Erick Mechler]

:: pass in quick on xl0 proto tcp/udp from any to any port 137 <> 139 keep
:: state

This line allows in all tcp and udp ports less than 137 and greater than 
139, which is exactly what you don't want :)  If you want to allow all 
ports 137-139 inclusive, you need to change it to

  ... port 136 >< 140 keep state

The < and > operators are not inclusive.

Cheers - Erick