Hi On Wed, Feb 14, 2001 at 09:22:28AM -0500, Brian Kimsey-Hickman wrote: > Thanks, for the advice. Actually I do need to MASQ both > incoming and outgoing packets. I have not mentioned this in > previous postings but this new firewall is set up on a second > T-1 line. I have an old T-1 and firewall that will be dropped > a few weeks after this one is up. If I don't mask the > incoming then when the web server responds the routers will > send that traffic out through the old T-1. In the final > product I was going to set the forward policy to DENY or > REJECT and have two lines that would MASQ port 80 incoming and > outgoing. After the old T-1 is dropped then that could be > changed. I had not thought of it before you mentioned it but > is it possible to MASQ both incoming and outgoing? > > Thanks for the input,
Perhaps if you draw an ascii-art picture of your network and explain what you're trying to do etc., I'll be able to offer some more useful suggestions :) It's not clear to me why you'd want to MASQ both ways and I suspect this is the source of your problems. -- Michael Wood | Tel: +27 21 762 0276 | http://www.kingsley.co.za/ [EMAIL PROTECTED] | Fax: +27 21 761 9930 | Kingsley Technologies
