Hugh E Cruickshank wrote: > I had read that document but had the impression that that would only work > for SNAT or One-To-One NAT (I know I could be wrong). What I am > looking at doing is taking a limited number of external IP addresses > (5) and routing them via DNAT to 10-15 different internal systems > depending on the protocol (i.e. HTTPS, SSH, VNC, PCAnywhere, ICA, > etc.). The only example I saw for DNAT indicated that the alias was > setup external to Shorewall so I made the assumption that I would > have to do the same.
You are correct -- see my post from earlier today in the thread "Vitual (sic) or alias interfaces". -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click ------------------------------------------------------------------------ leaf-user mailing list: [email protected] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
