On Wed, 1 May 2002, Victor McAllister wrote: > I am looking to build a transparent firewall with proxy arp so that internal boxes > can use public IPs. I have been using the LEAF mountain series and switched to > Dachstein about 5 months ago. I have been trying to read up on the Bering LEAF > system which is a derivative of Dachstein. Bering uses Shorewall. > > Looking at the diagram of your system I am interested in how your workstations > have both a private IP and a public IP as you describe and diagram here: > http://www.shorewall.net/myfiles.htm > >
Because they are using Static NAT rather than Proxy ARP. Only the Server in the DMZ uses Proxy ARP. -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ [EMAIL PROTECTED]
