- break up port range from 1024:65535 to masq/non-masq ports (if masq enabled?)
- explain in documentation to use 0:1023 for "to all servers" range.
(credit to Dave Stern)
- use ipcalc.pl to generalize IP if:
	- in a directly connected netblock (but not netblock on default route?)
	- not a point-to-point link (slx/pppx/plipx)
- env var to choose what name lookup level
- set TOS where appropriate
- warn if DOCOMMAND incompatible with capabilities of running kernel
- set up documentation for "nolog" chain
- parameter to set ip->0/0 if no match with /tmp/morehosts or IP ranges
- suggest that users make syslog asynchronous to reduce load
- Don't do processing if non-timestamp parameters equal to previous values.
- remind people to set all SERVER ports in /etc/services; no client ports.
- syslog is one way, syslog port to syslog port.
- 2401/tcp = cvs?
- do not generalize IP to 0/0 if both source and dest ports are 1024:65535
- grab additional local IP's (only?) from route -n grep BC and weed out dups
