Quoting camden lindsay <[email protected]>:
I _think_ but am not sure the difference lies in what options are included/excluded. From http://wiki.openwrt.org/doc/uci/firewall#rules - If src and dest are given, the rule matches *forwarded* traffic - If only src is given, the rule matches *incoming* traffic - If only dest is given, the rule matches *outgoing* traffic - If neither src nor dest are given, the rule defaults to an *outgoing* traffic rule The second rule includes 'src' and 'dest', so it is forwarding onto the given 'dest' (which is lan) The third rule indicates only 'src' and no 'dest', so it is treated as in 'incoming' (to the CPU) traffic. Forwarding to the LAN does not forward to the router cpu. I believe the third rule is allow the traffic to hit the CPU.
ah, that makes more sense, thanks. rday _______________________________________________ openwrt-users mailing list [email protected] https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-users
