|
||||||||
Hello Abdul, I think you have a mistake in your configuration, because ports must be opened in destination port, not in source, e.g PROTO source port destination port TCP/UDP LAN any any 53(DNS) Regards, ------------------------------------ Jorge Ramírez Herrera ------------------------------------ Administración de Sistemas Área General tecsidel Avda. República Argentina 6, 5a planta 08023 Barcelona Tel: (+34) 93 292 21 10 Fax: (+34) 93 292 28 28 mailto:<mailto:jorge dot ramirez at tecsidel dot es> http://www.tecsidel.es/ -----Mensaje original----- De: kashif yaqoob [mailto:monofw at yahoo dot com] Enviado el: jueves, 19 de agosto de 2004 11:03 Para: m0n0wall at lists dot m0n0 dot ch Asunto: [m0n0wall] monoWall rules didnot access internet Dear Sir, I have setup m0n0 and to access the internet I have the following rule LAN interface ------------------- Proto Source Port Destination Port TCP/UDP LAN net * * * This rule (above) works and allows me access to the internet. Now I want to make the LAN secure and only allow DNS, HTTP and POP access from the LAN to the WAN. So I delete the above rule and add the following rules.and define the specifice port given below Proto Source Port Destination Port TCP/UDP LAN net 53 (DNS) * 53 (DNS) TCP LAN net 80 (HTTP) * 80 (HTTP) TCP LAN net 110 (POP3) * 110 (POP3) If I only have these 3 rules then I cannot access the internet (no Http access, no DNS, no POP access). What is the mistake I am making? Can someone give me a set of rules for simple access to the internet for a small office please? Best Regard, Abdul Aziz --------------------------------- Do you Yahoo!? Take Yahoo! Mail with you! Get it on your mobile phone. |