[ previous ] [ next ] [ threads ]
 From:  Chris Buechler <cbuechler at gmail dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] Vpn tunnel and fw-rules
 Date:  Tue, 3 May 2005 22:56:05 -0400
On 5/3/05, Robert Högberg <baggio at atari dot org> wrote:
> Hi,
> I'm running a vpn between 2 m0n0walls. I searched the list archive to find
> out whether it was possible to use fw-rules to restrict traffic even
> if i use a tunnel. From what i read it said it should be possible to
> restrict outgoing traffic on the lan interface.
> I've blocked traffic from 192.168.50.x (monowall 2) to 192.168.40.x
> (monowall 1) but monowall 2 happily ignores the rules. And yes,
> i am initiating traffic from behind monwall 1.

Is the rule above the default allow all rule?  You have any static
routes on the system?  (they would be unnecessary and could mess up