[ previous ] [ next ] [ threads ]
 
 From:  "Roger Andersson" <roon at telia dot com>
 To:  "'Chris Buechler'" <cbuechler at gmail dot com>
 Cc:  <m0n0wall at lists dot m0n0 dot ch>
 Subject:  SV: [m0n0wall] Firewall rule not working all the time?
 Date:  Tue, 9 Nov 2010 17:46:07 +0100
> -----Ursprungligt meddelande-----

> Skickat: den 9 november 2010 04:32
> Till: Roger Andersson
> Kopia: m0n0wall at lists dot m0n0 dot ch

> 
> Fails to block what?  Your rule on LAN will only block 
> traffic initiated from the LAN. At a glance, seems that may 
> be traffic initiated from another interface.
> 
Thanks!
My FW knowledge do need some more training.
Adding block on incoming as well seems to do the trick.
        <rule>
            <type>block</type>
            <interface>wan</interface>
            <protocol>tcp/udp</protocol>
            <source>
                <address>178.73.0.0/16</address>
            </source>
            <destination>
                <address>PRESCOT</address>
            </destination>
            <log/>
            <descr>Block 178.73.0.0/16</descr>
        </rule>
Thanks again
Roger