My Shorewall firewall has interfaces on it, 2 public, 1 DMZ and 1 private. The 2nd of the 2 public interfaces are something I'm trying to get online right now. It connects directly to an outside service that we use here and will never go past that to the internet. However, it is using real IP addresses.
I turned up the 2nd interface and set up the routes to use that new connection. From the firewall I can ping the addresses just fine (and the traceroute shows the right path). On a computer from the inside (private NIC) the firewall tries to NAT and send the connection out the original interface. After thinking about it, this does make some sense. My questions are two fold. First, can I NAT an interface based on destination(can I even have multiple nat interfaces)? Or if not, how can I get this connection to work? Best regards, Scott ------------------------------------------------------------------------------ BlackBerry® DevCon Americas, Oct. 18-20, San Francisco, CA Learn about the latest advances in developing for the BlackBerry® mobile platform with sessions, labs & more. See new tools and technologies. Register for BlackBerry® DevCon today! http://p.sf.net/sfu/rim-devcon-copy1 _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
