Thanks Florin, That is what I meant, I want to be able to access my DMS web server using the same ip address/hostname internally as externally. I will try that (a extra rule before the one for the transparent proxy) later when I get home. I also have to try and find why did my DMZ box stopped talking to the network this morning, even though in that case I think it is a hardware problem (I first suspected iptables/mod_antihack on the dmz server, but the problem remained when those were removed and the server rebooted).
Thanks for the great work! --- Florin <[EMAIL PROTECTED]> wrote: > Jose Bernardo Silva <[EMAIL PROTECTED]> > writes: > > > Stranger yet, https to the dmz host from the > internal > > (net) works fine, which implies that proxy arp is > > correctly setup. The only other rule I have for > http > > is the one for the transparent proxy, added > > automatically by snf... Do I need to change the > order > > of the rules and move that one below the one > > allowing/forwarding access to the dmz? > > > > Thanks! > > > > the transparent proxy rule redirects the http > traffic from lan->wan to > lan->fw:3328. > > If I understand correctly, you also want some http > traffic to be > redirected to your dmz web server ? In that case you > should add a special > rule for that ... before the transparent rule as the > rule is important here. > > cheers, > -- > Florin http://www.mandrakesoft.com __________________________________________________ Do You Yahoo!? Everything you'll ever need on one web page from News and Sport to Email and Music Charts http://uk.my.yahoo.com
