On 15/04/2013 08:49, Mark Rogers wrote: [SNIP]
iptables is a giant hole in my Linux skills that I really must close!
There was a time I did hand-rolled iptables scripts, and very good they were too, even if I say so myself. However, I had one to do for a client that involved a lot of very complicated stuff, including VPNs between a central office and 3 outlying offices. I took a long hard look at Shorewall, and started using that and OpenVPN. It takes a little time to get ones head around it, but it's worth it. The documentation is just excellent. Cheers, Laurie. -- --------------------------------------------------------------------- Laurie Brown laurie@brownowl.com ---------------------------------------------------------------------