Topic: Internet Routable IP's

[David Uzzell]

I have internet Routable IP's for my internal Network for several reasons, but the bigest is I run a Public DNS on my internal Machine.

So I have my gateway on 203.#.#.227 and my DNS server runs on 203.#.#.228 but I also have other machines which run SSH and VNC servers etc.

What I need is to be able to OPEN up specific ports on the E-smith 4.1 to allow them to connect to internal machines.

I can't port forward as I have several machines which need to use the same port for the same service so I would have to change the forward every time I wanted to change machines.

All I really need is to allow external Computers to connect through the e-smith to internal comp's on specific ports. ie. DNS, SSH, HTTP, SMTP

Any one got any ideas and sugestions on how to allow these.

Thanks

[zac]

sounds like you've got a vicious cycle going on here... if you can't/don't want to port forward, then you can't open up ports to specific machines, because, afaik, that _is_ port forwarding. moreover, it _shouldn't_ be necessary. if you have machines with routable ip's, then you should be able to talk to them from the internet without worrying about what e-smith's doing, save if you've got one of them funky firewall configs that are preventing this.

theoretically, you should just make sure that security on the boxen that are to be publically accessible is nice and tight, set them up on your network, and everything should work, as e-smith (afaik) is only protecting those machines which are "behind" the nat firewall.

caveat emptor: i am sorely lacking in the caffeine department, so upon reading this may make no sense at all.

hope this helps,

zac