Thomas Kotzian wrote: > what do i have to do to have a DMZ without bridging? - how do i have to > configure routing. - please help! Unless you are using proxy-ARP, you need to: a) configure the routing tables on the DMZ hosts to use the firewall as the gateway to the Internet (and the external router, if you need to talk to it), and b) configure the routing table on the external router to use the firewall as the gateway to the DMZ hosts. You may wish to use "sysctl -w net.ipv4.conf.all.proxy_arp=1" to enable "automatic" proxy-ARP on both interfaces. -- Glynn Clements <glynn.clements@virgin.net> - : send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.kernel.org
