Roman, : i will that all outgoing traffic from DMZ get over eth2 - eth0 NIC's to : ISP and over eth2 back to DMZ. : And all outgoing traffic from LAN get over eth3 - eth1 NIC's to ISP switch. This should give you some idea of how to solve this problem, although this is not a complete solution: http://mailman.ds9a.nl/pipermail/lartc/2002q3/005003.html You'll probably want to use "ip rule add iif eth0 table ISPA" or something similar. You should read up and understand the how and why of multiple routing tables: http://plorf.net/linux-ip/html/routing-tables.htm Additionally, you'll need to read up on "ip rule": http://plorf.net/linux-ip/html/tools-ip-rule.htm Good luck, -Martin -- Martin A. Brown --- SecurePipe, Inc. --- mabrown@securepipe.com _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
