> 1) DSL connection with fixed IP > 2) Firewall/gateway between DSL network and my internal one, with full > access to logging, configuration etc. > 3) Multiple CPU's on a private network, all needing access to Internet > 4) Internal server on which I'd like to make various services available > to the outside world (apache, sendmail etc) > > Does masquerading allow for my number 4 (inbound rules)? No, for that you'll need extra stuff. The problem there is that if you don't have "real" IP's behind firewall, it can't be done without doing port forwarding. > Is there a simple document which covers starting from scratch and > setting up the above requirements? I hate to scrap your current progress, but I'd like to suggest/recommend that you switch to kernel 2.4 and use IPtables/netfilter instead of the soon-to-be-deprecated ipchains. See netfilter.samba.org. However, by looking in the HOWTO's, you do have the right way of going about getting things working. John -- # John Madden weez@xxxxxxxxxxxxx ICQ: 2EB9EA # FreeLists, Free mailing lists for all: //www.freelists.org # UNIX Systems Engineer, Ivy Tech State College: http://www.ivy.tec.in.us # Linux, Apache, Perl and C: All the best things in life are free! ============================================================= Avenir Web's Linux Discussion List List info: //www.freelists.org/cgi-bin/webpage?webpage_id=13 To unsubscribe: email linux-discussion-request@xxxxxxxxxxxxx with 'unsubscribe' in the Subject line. Administrative contact: weez@xxxxxxxxxxxxx =============================================================