One. Use NAT and hide the other machines behind the firewall; just forward the appropriate ports to the right machines.
Generally agreed. If you have a specific use for a second IP address, by all means get it. But you only _need_ one, and NAT is one more layer of security for your network.
May I suggest IPCop? http://www.ipcop.org
Also look at Shorewall (http://www.shorewall.net) my personal favorite.
-- Rodolfo J. Paiz [EMAIL PROTECTED]
-- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
