Re: [m0n0wall] how to allow incoming connections from WAN to LAN? (no NAT)

From:	Dinesh Nair <dinesh at alphaque dot com>
To:	Alain Fauconnet <alain at ait dot ac dot th>
Cc:	m0n0wall at lists dot m0n0 dot ch
Subject:	Re: [m0n0wall] how to allow incoming connections from WAN to LAN? (no NAT)
Date:	Wed, 23 Nov 2005 22:29:10 +0800

On 11/23/05 18:51 Alain Fauconnet said the following:
> The only reference to this I've found is
> http://doc.m0n0.ch/handbook/faq-no-nat.html.
> I've enabled 'advanced outbound NAT' as advised, but this has made no
> change. I'm note sure how it would anyway, since I don't use NAT
> at all.

enabling Advanced Outbound NAT and then not adding any entries effectively 
disables NAT on LAN->WAN packets. i know this sounds counter-intuitive, but 
that's the way it is. :)

> LAN is 222.222.64.0/23
> WAN is 222.222.64.48/30

looks like you've got a split subnet. /23 on your LAN will clash with /30 
on your WAN.

-- 
Regards,                           /\_/\   "All dogs go to heaven."
dinesh at alphaque dot com                (0 0)    http://www.alphaque.com/
+==========================----oOO--(_)--OOo----==========================+
| for a in past present future; do                                        |
|   for b in clients employers associates relatives neighbours pets; do   |
|   echo "The opinions here in no way reflect the opinions of my $a $b."  |
| done; done                                                              |
+=========================================================================+