> Hello everyone!
> straight forward to my problem.
> Actually an easy setup:
> I have several PCs in my LAN (all static IPs) and I want only a few
> to be able to acces the internet (WAN).
> For testing only one PC should be able to do that.
> I have created the following rules in my LAN rule-set:
> ALLOW * LAN address * -> LAN address *
This rule is not needed.
> ALLOW * PC1 * -> WAN address *
This rule is stating that PC1 can only access the WAN address (i.e. the
address assigned to WAN interface)
> ALLOW * PC1 * -> * *
This rule is stating that PC1 can access any address.
The Deny rule will not block the access to the m0n0wall WebGUI - there
is a hidden "anti-lockout" rule that can be disabled under Advanced.
If you have static addressed PCs, just don't assign a gateway address
(or assign loopback address - 127.0.0.1) on the PCs that should not
access the internet...
James W. McKeand