incoming(outgoing)-filter for PPPoE traffic

abrandys · July 14, 2005, 10:44am

We can’t link incoming-filter and outgoing-filter with ip firewall rules.

We want to have two kinds of users:

First group have only access to www and email. They recieve IP’s from DHCP, ip pool is 192.168.100.30-192.168.100.40.
Second group of users will connect via PPPoE Server, we gave them IP’s from the same pool 192.168.100.30-192.168.100.40, because we want to make both groups viewable via “My Network Places”. We would like to give them additional services unlocked, so we have to mark PPPoE traffic for making additional Firewall Unlock Rules.

Could someone make an example for that, because documentation doesn’t say how to define incoming-filter. Please do that step by step.

Greetz
A.Brandys

LatinSuD · July 14, 2005, 11:04am

I’m not sure if it is possible to have PPPoE and direct-DHCP on the same subnet. Afaik PPPoE defines a new interface for each connection so you end having same subnet in 2 different interfaces, which usually doesn’t work (but bridging).

If you use different subnets and pools hosts will still be able to connect to each other through their ip address like \192.168.1.5, but i think they will not be able to discover each other (you may need a special netbios service for that). Imho netbios is usually no good anyway.