rainer at ultra-secure.de wrote: >> I've got a garage full of tools at my disposal. However, for the task at >> hand, which is nailing a nail, there is no tool more appropriate than the >> aforementioned hammer. > > > Yeah, but the original poster's only tool seems to be the CentOS > sledge-hammer. > I could understand him if the answer to his question was "IRIX" or "Buy an > IBM mainframe". > I think even in large enterprises with a strict policy about what OS and > what applications can go into a datacenter, there should be a way to > define exceptions. Because there are always cases where the > "one-size-fits-all" policy just doesn't fit at all. I think the original poster was more interested in separating billing for different addresses than typical firewall tasks anyway. And in that case it might make more sense to use netflow reports from the gateway router if if has the capability, or per-interface traffic on the downstream switch ports. -- Les Mikesell lesmikesell at gmail.com