[ previous ] [ next ] [ threads ]
 From:  Chris Buechler <cbuechler at gmail dot com>
 To:  marijan <mjakara at xnet dot hr>
 Cc:  Monowall Develop <m0n0wall dash dev at lists dot m0n0 dot ch>
 Subject:  Re: [m0n0wall-dev] why only 'IN' firewall rules?
 Date:  Thu, 31 Mar 2005 13:15:04 -0500
On Thu, 31 Mar 2005 20:08:30 +0200, marijan <mjakara at xnet dot hr> wrote:
> Why firewall rules can be set only 'IN' rules (no specified, but is
> always 'IN')?

Because you never need 'out' rules, and only having one direction
makes things a whole lot easier to understand for most people.

> It will be nice to have option in witch you can enable view of system
> rules and maybe changed by user..

You can see them in status.php, but it would be nice to be able to
have a checkbox to allow you to edit some of the rules (like the PPTP
server rule that permits anything to TCP 1723 and similar for IPsec).