bugtraq id 3162: "When more than one remote node filtering rule is applied, the first filtering rule is the only one that takes effect." Although bugtraq id 3162 reports that ZyXel released a firmware update 2.50(AL.1) to fix this vulnerability for the Prestige 642 routers it seems this bug is still present in new firmware versions. This configuration has been tested and still has the bug. Router: ZyXEL 642R-13 (642R-I ADSL over ISDN) Routing: IP ZyNOS F/W Version: V2.50(AL.2) | 8/30/2001 ADSL Chipset Vendor: Alcatel, Version 2.5.7 -- Bernardo Pons
