Re: Feature request to move firewall rules

Actually I just took a look at the m0n0wall wishlist Manuel has on the site and 
our wish is one of his too for the "groups" policies:

-allow groups of hosts/networks for aliases

Some of interest to me are:

-certificate authentication for IPsec VPN 
-OpenVPN support
-support secondary networks on WAN interface (ESPECIALLY with load balancing)
-second webGUI user with read-only access 

As for the one below, I don't know if I like this idea in that portsentry is 
nice but can also block out legitimate traffic. I may try this one on a test 
box since it would be pretty easy to setup. (I think)
 
-port scan detection with automatic blackholing 


Chet Harvey
Pitbull Technologies <http://www.pittech.com/> 
Protecting your Digital Assets
703.407.7311


Quoting Joe Lagreca <lagreca@xxxxxxxxx>:

> I realize there are arrows to move rules up and down by one place
> right now, however I thought it would be really nice to have a move
> button, that pops up a window and lets you place a rule anywhere
> within the rule listings.  It may require numbering all of the rules,
> and then you could say place this rule before rule #2, or after rule
> #7.
> 
> Just an idea that may help people who need to move rules around, but
> have a long rule list.
> 
> Another idea that I believe have been suggested before is to be able
> to group services into an alias.  Then you could just create one rule
> to allow all services in that alias through.  This is something I used
> frequently with Netscreen.
> 
> I'm not knocking m0n0 at all.  I think its a FABULOUS project, and its
> all I use now for my firewalling.  GREAT JOB Manuel.
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall-unsubscribe@xxxxxxxxxxxxx
> For additional commands, e-mail: m0n0wall-help@xxxxxxxxxxxxx
> 
>