and what you are wanting to do is something like this
(internet) <-[x]obsd firewall[i0][i1]
[x]obsd firewall[i0]-> (private address range{A} LAN with no port
forewarding)
[x]obsd firewall[i1]-> (private address range{B} LAN with port
forwarding)
but without assigning IP addresses to i0 and i1.
And you need bridging rules for the firewall to route from i0 to i1.
Is that right?
And you don't want to change the private range addresses assigned to
the boxes that are being port forewarded.
Yes, this is exactly what I want... :) Thanks for explaining my view.
Of course, it's not a standard terminology or diagramming method.
Do you happen to have range A and range B separated, so that all
machines in range B would be in, for instance, 192.168.0.[1..15] (thus,
192.168.0.0/28) and all machines in range A would be in
192.168.0.[17..31] (thus, 192.168.0.16/28)? Or, even better, the
machines in range A might be DHCP?
--
Joel Rees
even though much of what I do is not sensible
it does make sense if you know why ...
