Firewall/NAT

Hi,
İ'm using m0n0wall 1.26 on ip120. Very well running. Two interface LAN and WAN. OPT not enabled.  LAN side block port 80. but not blocked.
my config LAN rule
           Proto    Source          Port    Destination    Port    Description
1.allow TCP     LAN net         *                *              *
2.block TCP      LAN net        *                 *              80

thanks a lot 


very sory i'm little english

My understanding if firewalling is very limited, but I am positive that firewalls treat rules in a specific order. What Ican see is that you are allowing all traffic (including http) first then your second rule stops http traffic.
Change your rules around and place your http blocking rule first.

Cheers
Gareth

thanks. I'm ver stupid.
one question. blocking limewire traffic. but not blocking. firewall log see block. not block limewire and connect.

my rule add:
           Proto    Source          Port    Destination    Port    Description
1.block TCP              LAN net        *                 *              80
2.block TCP/UDP      LAN net        *                 *             6346
3.block TCP/UDP      LAN net        *                 *             6347
4.block TCP/UDP      LAN net        *                 *             6348
5.allow TCP             LAN net         *                *              *

Glad the first problem was sorted out - it is sorted out is it? 

As for the second problem. I know that the P2P programs use random ports, so if they can't connect they try another.
Just something to consider. Most firewalls install with all ports open on the LAN side, ie you can connect to anything.
What you should do (and please anyone correct me if I am wrong) is block everything and then only allow access to those specific things, ie email, https (for online banking etc). That way you won't be vulnerable to intrusions.

Just a thought.

Hope that helps

Gareth