On Sun, 31 Jan 2010, Patrick Chemla wrote: > I would like to add a question: > > I am quite a newbie in this field. > > If one of my network interface is connected to the public side, and > receive 16 > public ips from my ISP, do I have to declare 16 alias to my network > interface? > > If there are 128 ips, I should declare 128 aliases??? Why not just route the real ips on to the real servers? Why use internal IPs for the servers and DNAT at all on their public side? Filtering can happen just as good on the real IPs, no need to hassle with NAT. c'ya sven -- Three may keep a secret, if two of them are dead. - Ben F. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
