RE: [m0n0wall] Port Blocking

From:	"Jewell, Michael" <mjewell at law dot umaryland dot edu>
To:	"Monowall Support List" <m0n0wall at lists dot m0n0 dot ch>, "Henning Andreseck" <AndreseckH at gymszbad dot de>
Subject:	RE: [m0n0wall] Port Blocking
Date:	Sat, 30 Jun 2007 18:59:10 -0400

You need to make sure you add an allow at the top for your proxy server,  otherwise, it won't be
allowed out either.
 
for that one,  specify it's info:
Source IP: Proxy Server IP
Source Port: *
Destination IP: *
Destination Port: 80 , or you can specify any if you want the proxy to go anywhere, any port...
 
You may also want to add the other common alternate web ports, 81, 8080, 8081,  just make sure your
proxy can listen to those extra ports...
 
-Mike

________________________________

From: Michael Brown [mailto:knightmb at knightmb dot dyndns dot org]
Sent: Sat 6/30/2007 4:10 PM
To: Monowall Support List
Subject: Re: [m0n0wall] Port Blocking


You have the ports mixed up. Use this one, I tested it. It works at blocking people from hitting a
website at port 80 (it won't block secure sites though, you'll have to include that port in another
rule to do that)

Screenshot below. (sorry, forgot the screenshot)

 <https://newmail.law.umaryland.edu/exchange/mjewell at law dot umaryland dot edu/Drafts/RE:%20[m0n0wall]%20Port%20Blocking.EML/1_multipart/ATT416375.gif>



Henning Andreseck wrote: 

	Ok, now i did it like you said.