[ previous ] [ next ] [ threads ]
 From:  Chris Buechler <cbuechler at gmail dot com>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] missing rule option... destination: WAN
 Date:  Tue, 8 Feb 2005 00:16:56 -0500
On Mon, 7 Feb 2005 22:42:26 -0500, Will Dyson <will dot dyson at gmail dot com> wrote:
> >
> >
> > Why isn't there a WAN in the destination list?
> I have only one subnet that I want to limit to WAN access only, but
> I've wondered the same thing. It would certainly be a more intuitive
> way to set it up.

To answer this portion, it's that the WAN isn't the destination, the
destination would be any IP except those on local networks.  Since
m0n0wall doesn't necessarily know what all networks are local, you
can't automatically define what isn't local in a firewall rule.