> In order to 'bind' any number of DNAT addresses to the firewall, you
>have two choices.
>1. Actually bind the IP address to the physical interface, such as:
>ip addr add w.x.y.z/24 dev eth1
would w.x.y.z be the private address or public address?
>This will then get the DNAT from iptables.
>iptables -t nat -A PREROUTING --destination w.x.y.z -j DNAT --to
>${My_NEW_ADDR}
would w.x.y.z be the private address or public address?
thanks
John
