I know this is going to seem like I don't want to RTFM (including Ziegler's book), but trust me, I have been reading them, and I'm utterly confused. I think if I start working with something real, this will begin to make sense.
This is an example I can start building from if someone would give me a little help getting it started. Once this is in place, I think I can start to limit traffic, etc.
I have 10 public IP addresses that I would like to go to 10 private IP addresses. The public IP addresses are 1.2.3.1 through 1.2.3.10. The internal IP addresses will be 192.168.1.1 through 192.168.132.10. I don't really care about limiting who can access which ports on these machines, etc., as I plan to use this example as a starting point and work from there. I can play around with each IP once I have the connections in place.
Can someone give me an example of how to NAT these addresses assuming the public IP addresses are on /dev/eth1 and the private addresses are on /dev/eth0? Once I start playing with something real, I just know this is all going to fall into place.
