> Does anyone know if this a limitation of ipfilter on BSD or just the way
> m0n0wall sets up the filter rules? I know that iptables on Linux can
> work so that the outside firewall IP will be nated from outside
> connections and connections from the LAN segment using DNAT because that
> is how I had some firewalls setup before. It would obviously be nice
> not needing to set DNS overrides for services placed on a service network.
"Reason. This is due to a limitation in ipfilter/ipnat (which are used
in m0n0wall). (...)"