[ previous ] [ next ] [ threads ]
 
 From:  Chris Buechler <cbuechler at gmail dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: Fw: [m0n0wall] Firewall Rules
 Date:  Fri, 28 Oct 2005 21:09:39 -0400
On 10/28/05, Garrett <glc at c dash email dot com> wrote:
>  > Set up DHCP to give addresses.  Put a DHCP static
>  > mapping for your device's MAC address outside of the DHCP scope.  Set up
> a
>  > rule on OPT allow that single IP to the IP on the LAN subnet.
>
> Created a static mapping for the PocketPC.
>
> (OPT tab)
> Proto: *
> Source: ip_of_pocketpc
> Port: *
> Dest: ip_of_pc_on_lan_subnet
> Port: *
>
> The above rule allows the PocketPC and PC to communicate, however,
> ActiveSync fails if the Dest field is NOT set to any (*):
>


Fails with what log message, specifically?

Firewall rules are only applied inbound to the interface, and are then
let outbound on the other interface via states, and reply traffic is
also allowed via states.

i.e. you never need rules for return traffic, as was suggested.

-Chris