block draft-manning-dsua-03.txt by ipfw2

RESERVED-1, DHCP auto-configuration, NET-TEST, MULTICAST (class D), and class E. These IP addresses should be stopped on outside interface.

${fwcmd} table 2 flush
${fwcmd} table 2 add 0.0.0.0/8
${fwcmd} table 2 add 169.254.0.0/16
${fwcmd} table 2 add 192.0.2.0/24
${fwcmd} table 2 add 224.0.0.0/4
${fwcmd} table 2 add 240.0.0.0/4
${fwcmd} add deny all from any to 'table(2)'   via ${oif}