> The Web proxy suggestion has me puzzled. :) "me2", because given that 1.2.3.4 is a valid internet-wide IP (e.g. ppp0), 10.x.y.z is the local net (eth0) and a client is 10.0.0.1 on eth0, there should not be any problem to connect from 10.0.0.1 to 1.2.3.4:80 and get it DNAT'ed. Or do you mean that `telnet 127.0.0.1 80` on the DNAT-rulebox itself does not work [anymore]? Jan Engelhardt -- | Alphagate Systems, http://alphagate.hopto.org/
