[ previous ] [ next ] [ threads ]
 From:  Kerem Erciyes <k underscore erciyes at zegnaermenegildo dot it>
 To:  "Zachary Miller" <znmiller at sbcglobal dot net>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] Redirects to LAN
 Date:  Tue, 31 May 2005 14:31:54 +0300
This rule anbled me to user the https interface on the monowall and no
problems were seen.

the 81.x.x.x was my ip and I connected to mono from home to manage.

Firewall: Rules

WAN interface
Proto   Source          Port    Destination     Port    Description
TCP   *   *       wan access

Kerem Erciyes (k underscore erciyes at zegnaermenegildo dot it)
IT Sorumlusu
ISMACO Amsterdam BV (+90 216 394 00 00)
Ermenegildo Zegna Butik (+90 212 291 10 24)

This message is OpenPGP Signed and content and 
identity of the sender can be verified with a
pulic PGP key of the sender. Public PGP key
can be obtained upon request.

Tuesday, May 31, 2005, 1:40:13 PM, you wrote:

ZM> Thank you very much for the help on this. I have another question...

ZM> I set up a redirect on the WAN interface to an internal host, but it
ZM> does not seem to be working.. I actually have two setup.
ZM> One accepts connections on the WAN interface HTTPS port and redirects
ZM> it to the m0n0wall box HTTPS port to allow me to access the web interface
ZM> externally, as there is no option in m0n0wall to allow this. I did not
ZM> really expect this to work, and it doesn't.

ZM> The other redirects port 80 on the WAN interface to port 80 on my access
ZM> point to allow me to configure this externally. This is not working either.
ZM> I figure I must be doing something wrong, but I can't figure out what.

ZM> I should note that the "WAN" interface is actually connected to my internal
ZM> LAN, which is NAT'd and firewalled, so there is no danger of external
ZM> internet
ZM> hosts being able to connect to the web configuration interfaces of these
ZM> devices.

ZM> A suggestion to the m0n0wall developers, please add an option to allow
ZM> configuration
ZM> through the WAN for those of us connecting it to a LAN!

ZM> Thank you.

ZM> -Zach

>> ----- Original Message ----- 
>> From: "edward mzj" <edward underscore mzj at yahoo dot com dot cn>
>> To: "Zachary Miller" <znmiller at sbcglobal dot net>; <m0n0wall at lists dot m0n0 dot ch>
>> Sent: Tuesday, May 31, 2005 2:55 AM
>> Subject: RE:[m0n0wall] Web proxy
>> > yes. but not so straight forward.
>> >
>> > goto diagnotics->backup/restore, download the config.xml. open the file
ZM> in
>> an text editor and add
>> > the following sentences into the <nat> </nat> section. you have to do so
>> 'cause m0n0 doesn't
>> > support adding a rdr rule on lan interface through the web gui. remember
>> to restore your modified
>> > config.xml when done.
>> >
>> > <rule>
>> >     <protocol>tcp</protocol>
>> >     <external-port>80</external-port>
>> >     <target>your-proxy-server-address</target>
>> >     <local-port>your-proxy-server-port</local-port>
>> >     <interface>lan</interface>
>> >     <descr/>
>> > </rule>

ZM> ---------------------------------------------------------------------
ZM> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
ZM> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch