|
||||||||||
On Tue, 1 Jun 2004, Ron Rosson wrote: > Can someone verify this that has more knowledge of how the xml is being > parsed. i'm running a modified[1] version of 1.1b10, and i can't reproduce your situation. i tried redirecting WAN port 25 on the m0n0wall to port 25 of a machine hanging off the LAN port, and it works with the rules being added correctly. see snippets below... # ipnat -l List of active MAP/Redirect filters: map rl1 192.168.1.0/24 -> 0.0.0.0/32 proxy port ftp ftp/tcp map rl1 192.168.1.0/24 -> 0.0.0.0/32 portmap tcp/udp auto map rl1 192.168.1.0/24 -> 0.0.0.0/32 rdr rl1 0.0.0.0/0 port 25 -> 192.168.1.199 port 25 tcp List of active sessions: RDR 192.168.1.199 25 <- -> 192.168.0.3 25 [192.168.0.2 4303] # ipfstat -in [..snipped..] @13 block in log quick on rl1 from any to any head 200 @1 pass in quick proto tcp from any to 192.168.1.100/32 port = 25 keep state group 200 [1] i've not modified any of the ipfilter/ipnat nor the m0n0wall webgui code as it pertains to nat. Regards, /\_/\ "All dogs go to heaven." dinesh at alphaque dot com (0 0) http://www.alphaque.com/ +==========================----oOO--(_)--OOo----==========================+ | for a in past present future; do | | for b in clients employers associates relatives neighbours pets; do | | echo "The opinions here in no way reflect the opinions of my $a $b." | | done; done | +=========================================================================+ |