[ previous ] [ next ] [ threads ]
 
 From:  Fred Wright <fw at well dot com>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] manually adding rules..
 Date:  Mon, 16 Aug 2004 12:42:05 -0700 (PDT) 
On Sun, 15 Aug 2004 eric at ericmagny dot com wrote:

> I'm adding an IP alias on my DMZ (opt1) interface.  I use this alias to manage 
> some equipments.  But traffic to/from  LAN->DMZ (IP alias)  look to be blocked 
> by firewall rules. 

Make sure it's really a firewall problem and not a routing problem.

> In monowall WebGUI under Firewall/Rules I have for both Lan & Opt allow any 
> from any and any protocol!!   But nothing pass between Lan and Alias subnet on 
> DMZ..  (everything is ok with main DMZ IP add.)

You can verify the resulting rules with:

	ipfstat -hnio

> is it possible to manually (under /exec.php or config.xml) add firewall rules 
> to permit this traffice ??

Not in any terribly useful way, due to ordering.  But I don't think it
should be necessary in your case.

					Fred Wright