Yo just answered your own Question ... lol no Internal MAchines will not be able to go out through your NAT box and back in
thats just unethical and a big waste of Traffic ... so do what i do and run a local Bind 9 DNS on your internal LAN , and set it up so it forwards requests to your ISP's DNS server or one / many of OpenNICS Servers ... (OpenNIC is a free Domian Name Server Service ) then setup all your machines to use it as the DNS server for the Internet (yes even the IPTABLES box if ya want, even easier just Set up Bind 9 on your Firewall Box and set bind to only answer to requests on your Local LAN, and please if your going to do this make sure you are running Bind9 (DNS Daemon) as a Sercure User/Group that has basiclly no privliges ei (named) last but not least you would the have to edit your /etc/reslove.conf on your Firewall box and set the nameserver to your internal Ethernet Card IP and for Secondary add 127.0.0.1 (localhost) ..... yay ... :D you will find this runs great ... If you run into problems feel free to send me an EMAIL ... [EMAIL PROTECTED] im on my computer 24/7 (yes with no sleep so please dont piss me off with SPAM ... :P )
