[ previous ] [ next ] [ threads ]
 
 From:  Christoph Hanle <christoph dot hanle at leinpfad dot de>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] LAN rule problem (LAN -> WAN)
 Date:  Mon, 31 Oct 2005 17:39:07 +0100
padexx wrote:
> Hello everyone!
> 
> straight forward to my problem.
> Actually an easy setup:
> 
> I have several PCs in my LAN (all static IPs) and I want only a few to 
> be able to acces the internet (WAN).
> For testing only one PC should be able to do that.
> I have created the following rules in my LAN rule-set:
> 
> ALLOW    *    LAN address    *    ->    LAN address    *
> ALLOW    *    PC1         *     ->    WAN address    *
                                         ^^^^^^^^^^^^
if i understand your description correct, you give PC1 only access to 
the public IP of your m0n0 and not to the rest of the world.
> DENY        *    LAN address    *    ->    *        *
> 
> but PC1 is NOT able to access the net.

bye
Christoph
-- 
last words:
"let's make the backup tomorrow"