On 3/23/06, John Joseph Fowler <jfowler at serck dash controls dot co dot uk> wrote:
> Thank you for your reply Christoph.
> If i'm interpreting your response correctly, basically you're saying that
> m0n0wall is not able to allow/block any ip or ports wthin the same ip/subnet
> range witin the same interface? i.e. in my case, cannot create specific
> rules for use only in the 172.31.0.0/16 range on the LAN side?
No firewall can do this. Traffic within your LAN subnet never touches
> If this is the case, then also what is the option to "Bypass firewall rules
> for traffic on the same interface" used for?
That only applies when you have other subnets behind a router on your LAN.