News: This forum is now permanently frozen.
linktree m0n0wall Forum  >  m0n0wall Support (English)  >  Installation
linktree Topic: Help installing - Interface problem or?
Pages: [1]
Topic: Help installing - Interface problem or?  (Read 1682 times)
« on: November 27, 2007, 16:48:29 »
Magician_above *
Posts: 3
Hello, please help

I am tring to configure a replacement router with the following specs


ether 1 - Wan dhcp client
ether 2 - Lan - Dhcp server 10.10.10.x captive portel - access to wan only
ether 3 - lan office 10.10.11.x no dhcp or dhcp either would work. and wan and office access only

I can get ether2 - captive portel and internet no problem but am having problems getting ether3 to internet access working.
« Reply #1 on: November 28, 2007, 10:34:53 »
markb ****
Posts: 331
You will need a rule in the rules section.  Assuming that you are using the LAN interface for your CP access and Opt1 for your office LAN.  When you install Mono, it installs a default rule for the LAN interface allowing it access to anywhere.  You will need to add a rule to that interface above the existing rule to block access to opt1 subnet.  Then add a rule for the opt1 interface allowing traffic from opt1 network to any.  If you wish to block access for Office LAN traffic to LAN you will need a rule above this blocking access to the LAN network.  Please note, the rules are processed in order, so if you use a destination any rule and you want to block access to certain parts those rule need to be above the any rule.

If you want to make your network more secure, you could look at creating individual rules for ports used on the internet such as http(s) ftp etc and then block everything else.
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines