On Thu, 3 Nov 2011, Lorenzo Martínez Rodríguez wrote: > El 03/11/11 11:16, News escribió: >>> Hi all, >>> I haven't found anything in Google about this. >>> >>> I'm creating a firewall router with Centos with few virtual IP using iptables. >>> >>> May I ask for your experience? >>> Is there any pitfall or bad side of using virtual IP for this purpose? >>> I'm using few virtual IP to accommodate few subnets that go through >>> this firewall/router. I would not know why there would be a problem. My external interface on my iptables firewall has 30 ip addresses on it. Been running it that way for 8 or 10 years. > I use Firewall Builder http://www.fwbuilder.org to manage the ruleset > and I am very happy with it. +1 for fwbuilder. I have been using it since it was version 1.x. It is now 5.x and you would be hard pressed to pry it out of my cold dead hands. :-) Besides the fact that the program does a very good job of managing iptables firewalls, the devs are very responsive to bug fixes and feature enhancements. Regards, -- Tom me at tdiehl.org Spamtrap address me123 at tdiehl.org