what pros/cons would you have if you had one<-->one nat mapping for your servers ie:
web.server 192.168.1.5<-->216.191.221.51 mail.server 192.168.1.6<-->216.191.221.60 so the firewall is doing NAT with one to one mapping...there for your servers are useable over the net, but they have private ip's because the firewall has the real ip addy and is forwarding the requests. so my question is what would be the difference of just letting the servers have a real addres but yet behind a fire wall. part two: i am already running NAT, can i also do this one<-->one mapping as well? part three: on the machins that are being NATted (private ip's) what is the real address that is being spoofed? Or should i say, if i go to a website using a private ip machine, what address does the website think it is talking to? tia... _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
