Firewalls

Hi, only me again.

Sorry to be a pain a post loads but I have one more question to ask

In my manual for my firewall router it says the following:
>Sample Configuration Outbound: You want to deny all access to the WAN
except for the following:

>. HTTP access from any IP through TCP.

>. Any access from 10.0.0.3 through any protocol.

>. FTP Access from 10.0.0.3~10.0.0.6 through any protocol

>Converting the access requirements from above so that the Outbound Policy
can understand them yields the following:

>. Deny all access from any Src (LAN) IP to any Des (WAN) IP through any
source or destination port and through any protocol.

>. Allow access from Src (LAN) IP 10.0.0.3 to any Des (WAN) IP through any
port through any protocol.

>. Allow access from any Src (LAN) IP to any Des (WAN) IP through port 80
(HTTP), through TCP.

>. Allow access from Src (LAN) IP range 10.0.0.3~10.0.0.6 to any Des (WAN)
IP through port 20 (FTP), through any protocol.

It also states that you should list them in that order. But surely if you
list a Deny all from all on all ports first then it will block everything?
But the manual says it wont?

I'm really confussed!

Please Help.

Gavin.