Well I just downgraded to 1.0 and everything is working fine. So
somewhere between 1.0 and 1.1b9 the rdr statements are never getting
passed to ipfilter.  I guess I can live with this until that issue is
solved, but I will miss the traffic graph since I used that to see how
much my other family members were using in the house.

-Ron

P.S. Downgraded directly to the 1.0 using the same config.  ( Good to
know that the XML files are backwards compatable.


>
>On Thu, 27 May 2004, Ron Rosson wrote:
>> >
>> >On Thu, 27 May 2004, Ron Rosson wrote:
>> >> >Ron Rosson wrote:
>> >> >
>[...]
>> >> >And proper NAT rules? just had to ask.. It should work just fine,
>> can 
>> >u 
>> >> >connect to it from tha lan side?
>> >> 
>> >>  WAN        TCP     22 (SSH)    xx.xx.xx.xx     22 (SSH)
>> >> 
>> >> and yep.. made sure all was good on the lan side.. 
>> >
>> >What column is the "WAN" in?  I have no such NAT column here (V1.0).
>> 
>> That is the header under interfaces.
>
>But "interfaces" aren't listed on the NAT page, at least not here.
>
>> >Is "xx.xx.xx.xx" the same as <internal IP> (which should be the SSH 
>> >server
>> >IP)?
>> >
>> >Is "sis1" the WAN interface?
>> >
>> >Is "xx.xx.xx.xx" in "xx.xx.xx.xx,22" in the log the same as
<internal 
>> >IP>,
>> >(and not the same as the "xx.xx.xx.xx" in "xx.xx.xx.xx,19627")?
>> >
>> 
>> I am basically redirecting all requests on port 22 on the WAN 
>interface
>> to a machine on the internal lan port 22.
>
>Yes, I understand what you're *trying* to do.  I do the same thing here
>and it works fine.  But if you're too paranoid to post real IP 
>addresses,
>and won't even answer questions about them, it's rather difficult for
>anyone to see what might be going wrong.
>
>                   Fred Wright
>
>
>---------------------------------------------------------------------
>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
--
Ron Rosson
ron at oneinsane dot net