|
||||||||
> Then I was passing a line > /sbin/sysctl net.inet.ip.fw.one_pass=0 > This allowed packed after matching one rule being passed to the following > ones. Right, that's the knob I was looking for. Thanks. > I have not noticed such a possibility in M0n0wall yet. Does anyone know by > chance how to do that in M0n0wall. > Another question - how do you guys test if your rules realy work as they > should on M0n0wall? > With pure FreeBSD and IPFW I have been using "ipfw queue list" or "ipfw > queue show" You can use the http://<m0n0wall ip>/exec.php interface to run any command, like ipfw. It's pretty handy to add rules manually, though I haven't thought of a way to make them apply after a reboot. // Thomas Hertz |