Philip Pemberton wrote:
So what I'd like to do is have the DSL router forwarding to the firewall server, then have the firewall server do NATing and firewalling for the entire LAN subnet, all on a single interface. Is this doable, or do I really need to add another Ethernet interface?
There's no reason a forwarded packet can't go back out the same interface on which it arrived. There's an obvious compromise in security when you have both sides of the firewall on the same physical network, but if you trust your own machines and just want to protect against external attacks you should be OK as long as the DSL router forwards packets to the firewall machine only. -- Bob Nichols Yes, "NOSPAM" is really part of my email address.
