On 5/3/05, Robert Högberg <baggio at atari dot org> wrote:
> I'm running a vpn between 2 m0n0walls. I searched the list archive to find
> out whether it was possible to use fw-rules to restrict traffic even
> if i use a tunnel. From what i read it said it should be possible to
> restrict outgoing traffic on the lan interface.
> I've blocked traffic from 192.168.50.x (monowall 2) to 192.168.40.x
> (monowall 1) but monowall 2 happily ignores the rules. And yes,
> i am initiating traffic from behind monwall 1.
Is the rule above the default allow all rule? You have any static
routes on the system? (they would be unnecessary and could mess up