|
||||||||
Gregor Rozman wrote: > James W. McKeand wrote: >> The checkbox is only available when you create a rule an inbound NAT >> rule. When you edit an inbound NAT rule the check box is not there. >> i.e. the system will not edit or create the firewall rule when you >> edit an inbound NAT rule. You must manually edit the firewall rule >> if you edit the inbound NAT. >> >> IIRC, this is due to the fact that NAT and IP Filtering are handled >> by different subsystems. When the script to create an inbound NAT >> rule is ran, the script will also create the firewall rule (if you >> check the box). When the editing is done the script does not even >> know if there is a corresponding firewall rule. > > Thank you for the answer. > I have one more question regarding auto creation of firewall rules. > Is this correct, that auto create in inbound creates 1 firewall rule? > Looks like it creates only inbound communication and not outbound. If > I understand correctly the meanings of "source" & "destination" in > firewall set? So does that mean I must create manually outbound > firewall rule? Correct. The auto-create on the inbound NAT only creates the corresponding inbound firewall rule. The default LAN firewall rule is pass LAN -> any. So, if you want to control the outbound traffic, you will need to change the default rule and create any firewall rules. _________________________________ James W. McKeand |