> Hello everyone!
> straight forward to my problem.
> Actually an easy setup:
> I have several PCs in my LAN (all static IPs) and I want only a few to
> be able to acces the internet (WAN).
> For testing only one PC should be able to do that.
> I have created the following rules in my LAN rule-set:
> ALLOW * LAN address * -> LAN address *
> ALLOW * PC1 * -> WAN address *
if i understand your description correct, you give PC1 only access to
the public IP of your m0n0 and not to the rest of the world.
> DENY * LAN address * -> * *
> but PC1 is NOT able to access the net.
"let's make the backup tomorrow"