On Tue, Nov 04, 2003 at 01:20:30PM -0800, Fred Edwards wrote: > I can access the web server in the dmz from the internet fine.
Is this where the rdr rule comes into play, like the web server only has a private address, and you're redirecting one routable address on the external interface to that private address? > I can't access the web server in the dmz from the internal lan using > the internet ip. If so, you'll need a similar rdr rule on the lan interface. A connection from the lan to an external address will first come in on the lan interface, and (if not redirected to another address), will probably pass out through the external interface, and the rdr rule _there_ does not apply to outgoing connections. Daniel
