News: This forum is now permanently frozen.
linktree m0n0wall Forum  >  m0n0wall Support (English)  >  Firewall/NAT
linktree Topic: LAN access from OPT1
Pages: [1]
Topic: LAN access from OPT1  (Read 1053 times)
« on: April 02, 2010, 18:51:49 »
jon *
Posts: 1
I'm stuck here.  Don't even know if this is possible with m0nowall.
I use the LAN as my internal network where I use unsafe things like NFS.
I use OPT1 for guests; they get access to the internet via the WAN.
There is one machine on the LAN that has ports NATed.
The LAN is 192.168.1.1/24, OPT1 is 192.68.3.1/24
The WAN rules look like this:
*     RFC1918 * *
TCP *             * 192.168.1.2 80(HTTP)

The LAN rules look like this:
* LAN net * * *

The OPT1 rules look like this:
*     OPT1 net *  !LAN net *
TCP OPT1 net *  192.168.1.2 80(HTTP)

I would like the world to look the same from OPT1 as it does from the LAN.  In other words, if a user can reach the NATed web server on 192.168.1.2 from the LAN, it should also be reachable from OPT1.  I would like to be able to ssh (I didn't show the rule for that above) from OPT1 to the LAN just like I can from the WAN.  Is there any way to do this?

The only thing that I have gotten to sort of work is to add a NAT rule from OPT1 to the LAN but that's not a solution because it maps all traffic which means that the outside world is no longer
accessible.

Thanks,
    Jon
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines