[ previous ] [ next ] [ threads ]
 
 From:  "Kim Hartlev" <kim at hartlev dot net>
 To:  <m0n0wall at lists dot m0n0 dot ch>
 Subject:  How to change default inbound fw rules
 Date:  Tue, 21 Dec 2004 17:19:55 +0100 
Hi,

I've created an alias with the following command:
/sbin/ifconfig sis0 192.168.254.1 netmask 255.255.255.0 alias

Which works perfectly if you look at the output from ifconfig:
sis0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
	inet 172.16.0.1 netmask 0xffff0000 broadcast 172.16.255.255
	inet 192.168.254.1 netmask 0xffffff00 broadcast 192.168.254.255
	ether 00:0d:b9:00:7b:90
	media: Ethernet autoselect (100baseTX <full-duplex>)
	status: active

The problem I have is that all packets from the alias network going in to
sis0 are blocked by the following default rule (ipfstat -nio):
@10 block in log quick on sis0 from !172.16.0.0/16 to any

How is it possible to change the above rule to allow packets from the alias
network as well?

Thanks in advance!
Kim