" From: Jim Sandoz <[EMAIL PROTECTED]> " " Michael Lim(vpn) wrote: " > http://coombs.anu.edu.au/~avalon/ipfil-flow.html " > From this diagram, it appears that packet filter rules to operate on " > outbound packets before NAT and inbound packets after NAT. " " see " http://www.phildev.net/ipf/IPFques.html#ques11 " and also the related concept of "in" and "out" " http://www.phildev.net/ipf/IPFques.html#ques3 " " ps: " you may want to grok the "NAT happens in the CAT5 cable" philosphy " written about here: " http://marc.theaimsgroup.com/?l=ipfilter&m=99898624628175&w=2 " and here " http://marc.theaimsgroup.com/?l=ipfilter&m=99608074705794&w=2 " and here " http://marc.theaimsgroup.com/?l=ipfilter&m=99552181624892&w=2 " and here " http://marc.theaimsgroup.com/?l=ipfilter&m=97199037021347&w=2
yup. i can see now the flexibility of natting outside the filter - separate filter rulesets for passthrough traffic and traffic aimed at the firewall itself. ________________________________________________________________________ Andrew Hay the genius nature internet rambler is to see what all have seen [EMAIL PROTECTED] and think what none thought
