Re: [m0n0wall] accessing own web server

From:	Vincent Fleuranceau <vincent at bikost dot com>
To:	Adam Gibson <agibson at ptm dot com>
Cc:	m0n0wall at lists dot m0n0 dot ch
Subject:	Re: [m0n0wall] accessing own web server
Date:	Fri, 11 Mar 2005 20:50:25 +0100

Adam Gibson a écrit :

> Does anyone know if this a limitation of ipfilter on BSD or just the way 
> m0n0wall sets up the filter rules?  I know that iptables on Linux can 
> work so that the outside firewall IP will be nated from outside 
> connections and connections from the LAN segment using DNAT because that 
> is how I had some firewalls setup before.  It would obviously be nice 
> not needing to set DNS overrides for services placed on a service network.


See:
http://m0n0.ch/wall/docbook/faq-lannat.html

"Reason. This is due to a limitation in ipfilter/ipnat (which are used 
in m0n0wall). (...)"

-- Vincent