[ previous ] [ next ] [ threads ]
 
 From:  =?ISO-8859-1?Q?J=FCrgen_M=F6llenhoff?= <jm at oic dot de>
 To:  m0n0wall at lists dot m0n0 dot ch
 Cc:  adam at nellemann dot nu
 Subject:  Re: [m0n0wall] Comma separated port range and/or IP range in firewall rules?
 Date:  Sat, 19 Jun 2004 20:36:40 +0200 
Hi,

Adam Nellemann wrote:

> As far as I know this isn't currently possible (that is, apart from X-Y 
> port ranges), not with the webGUI at least (it is probably possibly to 
> do with the right cmd. line, but I wouldn't know?)
> 
> There have been a few requests (including one of my own) for some kind 
> of "port alias" list, much like the current IP/Network aliases, but for 
> ports. The idea being that you could add named ports and ranges to  such 
> a list, and then have them appear in the "To" and "From" port dropdowns 
> in apropriate places.

This would be even better :). Are there any plans that this could be 
part of the next release of m0n0wall?

> I don't know if this is something that is being considered for 
> implementation, but if it is, I guess it would be nice if such a feature 
> allowed for such "complex" port ranges (ie. a comma seperated list of 
> ports and/or ranges).

And it would be nice for IP-Ranges as well :).

> If the underlying programs (ie. ipfw and dummynet etc.) actually has 
> support for such "complex" port ranges, it might even lower the number 
> of actual (generated) rules for these, which might make things a bit 
> faster for some configurations? (And if not, at least it won't make 
> things slower, since the generated rules should ammount to the same set 
> of rules as what you would currently have to do by hand.)

I thought the same and was hoping that maybe a future (near future :)) 
version of m0n0wall supports it.

Bye,

   Jürgen