On Mon, 7 Feb 2005 22:42:26 -0500, Will Dyson <will dot dyson at gmail dot com> wrote:
> > Why isn't there a WAN in the destination list?
> I have only one subnet that I want to limit to WAN access only, but
> I've wondered the same thing. It would certainly be a more intuitive
> way to set it up.
To answer this portion, it's that the WAN isn't the destination, the
destination would be any IP except those on local networks. Since
m0n0wall doesn't necessarily know what all networks are local, you
can't automatically define what isn't local in a firewall rule.