|
||||||||||
On Sun, 2009-10-25 at 23:42 -0400, slamp slamp wrote: > thanks for the input. > > to get internet working on OPT1 i had to add a rule to allow from OPT1 > to any. i had to add a block rule above this to block traffic from > OPT1 to LAN. is there another way getting internet working on OPT1? > something like allow interface OPT1 to WAN but i couldn't figure this > out from the gui and i have been searching list archives/forum/etc and > not found an answer. Put a rule on the LAN interface that stops incoming traffic from OPT1 to LAN. Leave OPT1 open. That will allow it to pass through the WAN, but not LAN. > > > On Sun, Oct 25, 2009 at 5:43 AM, Thomas Koch <tikay dot event at googlemail dot com> wrote: > > The Default-Rule allows accessing everything, even other networks. > > > > 2009/10/25 slamp slamp <slackamp at gmail dot com> > > > >> i wanted to separate my wifi from my internal lan. > >> > >> vlan 5 - LAN - 192.168.1.0/24 > >> vlan 10 - OPT1 - 192.168.2.0/24 > >> > >> i have a cisco 2950. > >> > >> i can access each network from each side. i dont know why as i dont > >> have rules allowing them to access one another. i only have the > >> default rule. any ideas? > >> > >> --------------------------------------------------------------------- > >> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch > >> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch > >> > >> > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch > For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch > |