I was just reading some of the smoothwall docs, and I'll be damned if I can find anything about multiple IPs on the "red" NIC. So, I'm not sure if a smoothy can do 1-to-1 external-internal NAT or not. I don't use it myself, but have a few friends that swear by it. I thought I recall one of them doing mulitple 1-to-1 NAT with more than one public IP bound to the red NIC. Hmm... I'm pretty sure it can do it, but I just can't find it in the docs.
I just don't want to be putting out misinformation, if I'm not correct. So, if anyone here uses a smoothy, can you help out, and clarify this for us? Thx. StanTheMan TheHardwareFreak http://www.hardwarefreak.com rcon admin at: Beer for Breakfast servers <http://bfb.bogleg.org/> 209.41.98.2:27016 (CS multi-map) 209.41.98.2:27015 (DoD) 209.41.98.2:27017 (CS militia/dust2) Dallas, TX > -----Original Message----- > From: Florian Zschocke [mailto:[EMAIL PROTECTED]] > Sent: Tuesday, August 13, 2002 4:25 AM > To: [EMAIL PROTECTED] > Subject: Re: [hlds_linux] OT: Routing securely > > > [EMAIL PROTECTED] wrote: > > > > I think Florian is direct to list. I don't think he uses > Ken's newsgroup > > server. > > Correct. > > > In essence, you bind all of your public IPs that the ISP > has given you to > > your public NIC. Thus, it will accept any traffic thrown > at it from the > > world. You then create 1-to-1 NAT mappings from the public > IPs to the > > private IPs of your game servers: > > That's what I thought, too. Seems like I wasn't too far off. :) > > While we're at it, I would like to suggest having a look at > fwbuilder (http://www.fwbuilder.org) to those who don't want to > write their iptables rules all by hand but also don't want to go > for something like smoothwall but simply use what the kernel > already provides them with. It is a GUI (Gnome) application that > helps you set up firewall rules with drag-n-drop. What I like is > that it helps you organize your FW setup better. > > I would NOT recommend using the compiled fw script without going > through it and optimizing it a bit by hand, tho. It is still an > evolving tool (but fast and actively at that) and I tend to fine > tune the output a bit. But it can be a great help for a first rule > framework. > > Florian. > _______________________________________________ > To unsubscribe, edit your list preferences, or view the list > archives, please visit: > http://list.valvesoftware.com/mailman/listinfo/hlds_linux > _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
