On Tue, 3 May 2005, Chris Buechler wrote:
> On 5/3/05, Robert Högberg <baggio at atari dot org> wrote:
> > Hi,
> > I'm running a vpn between 2 m0n0walls. I searched the list archive to find
> > out whether it was possible to use fw-rules to restrict traffic even
> > if i use a tunnel. From what i read it said it should be possible to
> > restrict outgoing traffic on the lan interface.
> > I've blocked traffic from 192.168.50.x (monowall 2) to 192.168.40.x
> > (monowall 1) but monowall 2 happily ignores the rules. And yes,
> > i am initiating traffic from behind monwall 1.
> Is the rule above the default allow all rule? You have any static
> routes on the system? (they would be unnecessary and could mess up
The rule is the only one in the lan-section. Yes, i have a bunch of
static rules that needs to be there because of multiple subnets.