Have you tried putting a sniffer on both interfaces to "see" what is
really happening?  We frequently use Ethereal (http://ethereal.org) to
watch traffic on LAN and WAN interfaces.  It's not exactly what you're
looking for but it might give you a better idea what's happening with
your packets.

Mike

On Thu, 9 Sep 2004 19:22:49 -0500, Rodman Frowert <frowertr at i dash 1 dot net> wrote:
> Actually the subject is misleading as I really don't know what I need.  I
> want to be able to see what is causing me to not be able to talk to my DMZ
> from my LAN.  It is not any kind of incorrect firewall rule.  I have reset
> the system plenty of times to see if I could reproduce the problem.  I can
> reproduce the problem, but it doesn't always "break" on the same thing.  For
> example, I can setup my entire m0n0 box and access the DMZ perfectly from
> the LAN.  But when I go to download the configuration, it "breaks" and I can
> no longer talk to the DMZ until I reset the box.  Or, I may get through
> partially configuring the box and it breaks halfway through and I can no
> longer talk to the DMZ.
> 
> So, I didn't know if there was anyway to actually "see" what is going on
> when it is not working.  Can I tell if the m0n0 box is dropping the packets
> anyway.  When it doesn't work, I check the default firewall logs but don't
> see anything.
> 
> Rodman
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
> 
>