[ previous ] [ next ] [ threads ]
 
 From:  Vincent Fleuranceau <vincent at bikost dot com>
 To:  Adam Gibson <agibson at ptm dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] accessing own web server
 Date:  Fri, 11 Mar 2005 20:50:25 +0100
> Does anyone know if this a limitation of ipfilter on BSD or just the way 
> m0n0wall sets up the filter rules?  I know that iptables on Linux can 
> work so that the outside firewall IP will be nated from outside 
> connections and connections from the LAN segment using DNAT because that 
> is how I had some firewalls setup before.  It would obviously be nice 
> not needing to set DNS overrides for services placed on a service network.


See:
http://m0n0.ch/wall/docbook/faq-lannat.html

"Reason. This is due to a limitation in ipfilter/ipnat (which are used 
in m0n0wall). (...)"

-- Vincent