Hi chaps Had a bit of a google, and of course consulted Ziegler, but I'm still not 100% on either of these, so --- 1) can iptables use eth0:0 as a valid interface distinct from eth0 ? So I can use eth0 as LAN internal i/f and eth0:0 as DMZ internal i/f. and ... 2) Back when I did my checkpoint certs we covered "static NAT" - simple one-to-one address translation, rather than "hide NAT" - aka iptables SNAT / MASQUERADE.... ...the question I have is - is the example given in Ziegler starting on p280 and table 7.1 "Host Forwarding to Servers in a Privately Addressed DMZ" an example of "static NAT"? Thanks for any pointers Steve ----------------------------------------------------------------------- Information in this email may be privileged, confidential and is intended exclusively for the addressee. The views expressed may not be official policy, but the personal views of the originator. If you have received it in error, please notify the sender by return e-mail and delete it from your system. You should not reproduce, distribute, store, retransmit, use or disclose its contents to anyone. Please note we reserve the right to monitor all e-mail communication through our internal and external networks. -----------------------------------------------------------------------
