[ previous ] [ next ] [ threads ]
 
 From:  "Chris Bagnall" <m0n0wall at minotaur dot cc>
 To:  "'Harley Ice'" <joe at siennaridge dot com>, <m0n0wall at lists dot m0n0 dot ch>
 Subject:  RE: [m0n0wall] 1:1 rule config
 Date:  Fri, 5 Aug 2005 20:00:44 +0100
> TCP  *  25 (SMTP)  192.168.9.50  25 (SMTP)  Server - SMTP IN     
> TCP  *  110 (POP3)  192.168.9.50  110 (POP3)  Server - POP3 in     
> TCP  *  143 (IMAP)  192.168.9.50  143 (IMAP)  Server - IMAP in     
> UDP  *  53 (DNS)  192.168.9.51  53 (DNS)  DNS inbound     
> UDP  *  53 (DNS)  192.168.9.52  53 (DNS)  DNS inbound     
> TCP  *  80 (HTTP)  192.168.9.53  *  WS01 HTTP in     
> TCP  *  80 (HTTP)  192.168.9.54  *  WS01 HTTP in     
> TCP  *  80 (HTTP)  192.168.9.54  *  WS01 HTTPS in     

You'll want to leave all your source ports as *, since although, for
example, a web browser connects to a remote port 80, it can come from any
port on the client side.

Regards,

Chris
-- 
C.M. Bagnall, Director, Minotaur I.T. Limited
Tel: (07010) 710715   Mobile: (07811) 332969   Skype: minotaur-uk
ICQ: 13350579   AIM: MinotaurUK   MSN: msn at minotaur dot cc   Y!: Minotaur_Chris
This email is made from 100% recycled electrons