Ben Russo wrote: >Since you are working on this anyway.... > >For a slightly more secure setup, you might want to consider: > > > R E I > T+--------+ X+--------+N > internet |---|R| router |---|T|firewall|T|---| intranet > I+--------+ I+--------+I > P P | P > | > DMZ IP > \ > | HTTP, MAIL, SSH > >This will protect your servers from other intranet users >on the same subnet. (Also if you have 802.11 on your intranet...) > >Maybe after doing this your problem will disappear simply by >rethinking the ruleset. > >-Ben. > > >On Wed, 2002-11-13 at 13:13, Rahul Jadhav wrote: > > >>please check the attachment... >> >>Thanks >>Rahul >> >> You are right but I am trying to avoid doing that right now as i have invested a lot of time already into this system. Moreover, I am pretty sure there are people who have got iptables working with a setup like mine.
