Hi,
I am currently trying to de-commsion an old Pix Ver 4.4 Firewall... there is a deny "anything" i.e deny 0.0.0.0 0.0.0.0 0 rule at the begining of the Outbound Src list, but some of the outbound "exept commands have 0.0.0.0 netmasks on them... I am seeing illegal traffic building Outbound connections through the pix from the log.. would this mean that the 0.0.0.0 netmask is allowing any IP matching the netmask ??? outbound