Thanks Ryan!!
That was my hunch too, but wanted to be sure. Another question that
arises from this is whenever I reboot the box or do sh /etc/netstart,
the ip address that is bound to the external interface (with aliases)
would sort of round robin between the different aliases. Is this
normal behaviour?
On Jul 14, 2008, at 9:31 PM, Ryan McBride wrote:
On Mon, Jul 14, 2008 at 09:19:22PM -0700, Parvinder Bhasin wrote:
When I try to add the external ips as aliases on my external
interface,
it works fine.
Isn't the BINAT statement sufficient??? do i have to use aliases???
Unless the addresses are being routed to the firewall in question,
yes,
you have to use aliases. Otherwise your system will not reply to ARP
requests for the addresses, and the upstream router will not know
where
to send the traffic.
