ewan said: > >> #Lan--Internal Firewall--- External firewall -- Internet >> | >> | >> webserver > > > what purpose does the internal firewall serve? just plug everything > into one firewall and write rules accordingly There is nothing wrong with having multiple layers of firewalls. It means your haxor has several layers of security to beat - security through depth. But you can just use iptables on your internal firewall as well. No point learning new semantics :-) Alex www.bennee.com/~alex/
