Re: [m0n0wall] 1:1 and rule config question

From:	Chris Buechler <cbuechler at gmail dot com>
Cc:	m0n0wall at lists dot m0n0 dot ch
Subject:	Re: [m0n0wall] 1:1 and rule config question
Date:	Sat, 23 Jul 2005 18:13:02 -0400

On 7/22/05, Harley Ice <joe at siennaridge dot com> wrote:
> I have several machines behind a m0n0wall and would like to know how exactly to set the rules up.
> 
> Examples:
> 
> I have setup 1:1 maps for all my private/public IP's, but I now need to allow certain ports
inbound.
> 
> I need to allow DNS inbound from WAN * to LAN 192.168.100.218 and 192.168.100.219
> 

those two IP's can be summarized with network address
192.168.100.218/31 (that == 100.218 and 100.219).

For the others, no, no way to do it other than adding multiple rules
since they aren't CIDR summarizable.  The functionality isn't built in
because it isn't there in ipfilter, the firewalling software used.

-Chris