[ previous ] [ next ] [ threads ]
 
 From:  Lonnie Abelbeck <lists at lonnie dot abelbeck dot com>
 To:  m0n0wall List <m0n0wall at lists dot m0n0 dot ch>
 Subject:  Re: [m0n0wall] Bypass firewall rules for traffic on the same interface
 Date:  Sun, 11 Mar 2007 14:30:46 -0500 
Chris,

So, are you saying that if I *have* to put multiple subnets on the  
LAN segment, I should expect the firewall rules anomalies I have  
encountered and simply check "Bypass firewall rules..." to short- 
circuit those anomalies?

In my OpenVPN server application, I am not aware of any other way to  
configure things other than creating multiple subnets on a segment,  
ie. the OpenVPN server acting as a gateway to the virtual subnet.

I appreciate the guidance.

Lonnie

On Mar 11, 2007, at 11:00 AM, Chris Buechler wrote:

> On 3/10/07, Lonnie Abelbeck <lists at lonnie dot abelbeck dot com> wrote:
>>
>> I am quite satisfied keeping "Bypass firewall rules..." checked, but
>> I want to understand why m0n0wall is dropping LAN subnet1 to LAN
>> subnet2 traffic in the firewall.
>>
>
> Because you're doing this:
>
>> The question centers around having multiple subnets on a single
>> interface.
>
> And have been told you shouldn't do this and there can be undesirable
> consequences or other problems. Case in point - this, and potentially
> other things as well.
>
> -Chris
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
>