Firewall/NAT

Hello,

I've been playing with m0n0wall since v1.3 and i always get the same trouble:

I only got the default LAN -> any rule active, but still the firewall logs show a lot of denied outgoing traffic like
X   19:56:06.990764   LAN   192.168.0.20, port 50104   69.162.79.74, port 80   TCP

I noticed a lot of trouble surfing on some sites (like joomla administration, some filezilla transfers...)
I already tried to allow fragmented packets in that rule, but this doesn't really help.

It happens with all of my machines of the subnet.
This has been noticed on two different hardwares, with v1.3, v1.31 and v1.32.
Both m0n0 boxes i tried where configured with multiple VLANs and multiple DHCP servers on the LAN interface.
My WAN adress lies in a class C adress space, and of course i already deactivated the "Block private networks" rule in my WAN interface.
The firewall denies some of the outgoing traffic but not all.

I really like m0n0 because it allows me to run multiple DHCPs on multiple VLANs which is really great for connecting computers in my repair shop, but this drives me crazy...

Any help would be greatly appreciated.

Cheers.

Little up!

I did some testings with pfSense, same configuration, trouble free!
I would like to continue with m0n0 because it's tiny and does work great on my older hardware, and supports IPv6.

Can anyone provide me at least an idea of what's going on ?
Thanks.

up

I would assume the traffic is being blocked by one of the built-in rules. Take a look at:

http://doc.m0n0.ch/handbook/troubleshooting-firewall-rules.html

which will help explain how to work out which rule is responsible for blocking your traffic.

Steve.