RE: [m0n0wall] My Firewall Doesn't Appear to Work Properly.... I think??

From:	"Ryan Wagoner" <Ryan at wgnrs dot dynu dot com>
To:	"James Harrington" <jharrington at hyelm dot com>, <m0n0wall at lists dot m0n0 dot ch>
Subject:	RE: [m0n0wall] My Firewall Doesn't Appear to Work Properly.... I think??
Date:	Thu, 9 Mar 2006 19:53:55 -0500

Almost postiive on this answer. Your lan rules are right. You changed the webgui on monowall to port
6098. Thing is you need to check disable webGUI anti-lockout on the advanced page. It keeps you from
locking yourself out of the webgui. Just make sure you allow your ip to the web gui and the rules
are in the correct order or you will find you can't access it either.

-----Original Message-----
From: James Harrington [mailto:jharrington at hyelm dot com]
Sent: Thu 3/9/2006 7:19 PM
To: m0n0wall at lists dot m0n0 dot ch
Subject: [m0n0wall] My Firewall Doesn't Appear to Work Properly.... I think??

I have the following rules on my firewall LAN interface

Allow LAN to Anywhere (protocol tcp port 80)

Allow LAN to Anywhere (protocol tcp port 443)

Allow LAN to Anywhere (protocol tcp port 1863)

Deny LAN ALL to ALL

My understanding of the above configuration means that the only ports users
would be able to access are 80, 443, and 1863.  However all of my users have
the ability to reach port 6098 which this the portal I am using for the web
interface on my m0n0wall.

Can anyone tell me what I have done wrong.  I don't want my users to be able
to get to anything other than HTTP, SSL, and MSN

Thanks

James