Re: [m0n0wall] multiple port 80 rules in DMZ

From:	"Chris Buechler" <cbuechler at gmail dot com>
To:	Phil <xphilz at gmail dot com>
Cc:	m0n0wall at lists dot m0n0 dot ch
Subject:	Re: [m0n0wall] multiple port 80 rules in DMZ
Date:	Fri, 23 Feb 2007 02:11:08 -0500

On 2/23/07, Phil <xphilz at gmail dot com> wrote:
> Hi Chris,
>
> I have my /29 provided by my ISP setup on the DMZ interface as Firewall:
> NAT: 1:1
>
> I have been using this for 2 years now, so this just happens to be the first
> time I have tried to get port 80 (or any port) open to 2 different public IP
> addresses on the same segment.
>
> From here, I am using Inbound NAT to create the rules and then selecting to
> auto-create the fw rule.
>

There's your problem. Once you do a 1:1 NAT, you just need to open the
ports via firewall rules, using the private IP as the destination IP.
You don't add any additional NAT, all TCP and UDP ports (and other IP
protocols) are already mapped via the 1:1.

-Chris