I have one problem: i want to configure NAT for all internal Clients to the internet but not to the DMZ! How to do? I want to minimize my connection tracking table, so i don't want to setup a NAT with the internal IP of the firewall.
By the way, quiet the same: where is the iptables "!" for negating hosts/networks etc.?
This thread was automatically locked due to age.