Russ Bennett wrote:
Hello,
I've setup a 1:1 nat and entered in the rules. Nothing was getting
through so I looked at the log and I can see the rule getting hit
properly except within the log I get the following message
The rule that triggered this action is:
@45 block drop in log quick all label "Default block all just to be
sure."
Where do I go to disable this "Default block all just to be sure." Rule?
That's matching the default block all, which means it didn't match any
of the rules you defined. You can't disable the default deny rule, what
you need to do is put in a rule that matches the traffic you want to
permit. For 1:1 NAT, that means a rule on the WAN with the appropriate
source port (any), source IP/network (whatever you want), destination IP
(the private, internal IP - NAT happens first), and destination port.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
