On 28.05.2004 20:35 +0200, Adam Nellemann wrote:
> Huh! Does this mean that for the LAN, unlike for the WAN, I need to
> add a "Block all" rule at the bottom of my list of LAN rules, if I
> don't want m0n0wall to pass everything from LAN to WAN?
> I had the impression that m0n0wall came with ALL interfaces blocked
> by default?!?
It does, but a LAN -> any pass rule is in the "factory" default
configuration because that's what most people want. If you delete all
rules via the webGUI, all traffic will be blocked on all interfaces
(well, almost - except for webGUI traffic so you can't lock yourself
out, and things like DHCP).