[ previous ] [ next ] [ threads ]
 
 From:  Lee Sharp <leesharp at hal dash pc dot org>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] CARP and OUT rules
 Date:  Wed, 07 Sep 2011 10:08:13 -0500
On 09/07/2011 07:19 AM, Tonix (Antonio Nati) wrote:
> OUT rules
>
> Possibility to choose if all rules apply to incoming or outgoing
> connections:
> If incoming, rules would apply as now. Now, with more interfaces, we
> are forced to write same rules on all interfaces, in order to
> protect services.
> If outgoing, rules would be applied on outgoing interface. This
> would semplify management of more interfaces, because rules would be
> written only once and only on outgoing interface.
> As alternative, mantaining actual incoming rules, it would be nice
> to have one PRE-RULES panel which rules would be applied to any
> interface, before interface local rules.

I see this as a disadvantage, since you no longer have the granular 
control.  However, I can see your trouble with making the same rule 
twice. (Or more)  But did you know you can copy a rule to another 
interface?  You just have to change the interface drop down and source 
dropdown.

			Lee