> > Is this more of what you are thinking??? > > http://leaf.sourceforge.net/devel/thc/dox/pa.txt > > sort of, well, except i don't have a cisco router, so it'd be > > (I have 216.158.54.224/29 routed to 207.245.72.146) > > > [Internet] > | > eth0 > | > LEAF Box (207.245.72.146) > | > eth1 > | > ------------------------------------- > | | | > Computer 1 Computer 2 Computer 3 > (216.158.54.224) (216.158.54.225) (216.158.54.226) > (192.168.1.1) (192.168.1.2) (192.168.1.3) > > With the leaf box only letting ports 22 and 80 inbound to the 3 computers. > > Right now I have the LEAF box as 207.245.72.153, setup as an IP > masquerading firewall, with port 80 forwarding to computer 3, and port 22 > forwarding to computer 2. > > Would it be better to just have 216.158.54.224, .225, and .226 set as > aliases for the leaf box, and use the INTERN_SERVERS to forward same ports > to different internal IPs depending on the external ip?
Setting up your internal systems with multiple IP's is possible, but I'd catagorize it as a "Bad Idea". Either masquerade the internal network using private IP's, or setup a border-router that allows your internal systems to have public IP's, but I wouldn't try to do both. Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
