I´m trying to connect two subnets togehter with shorewall 3.0.4 Simple doing with one special addition. Subnet 1 Shorewall eth0 10.100.100.254/24 Subnet 2 Shorewall eth1 10.200.200.254/24 Two clients belong to each subnet. They are: 10.100.100.1/24 10.100.100.2/24 10.200.200.1/24 10.200.200.2/24 The two subnets are linked together via the Shorewall router. If I do ssh from 10.100.100.1 to 10.200.200.1 I would like ip 10.100.100.1 to appear in ip 10.200.200.1 log file - it works, simply routed. There should be no rewriting of source address. Now I would like to do ssh from 10.100.100.1 to 10.200.200.2 and I would like Shorewall eth1 ip 10.200.200.254 to appear in 10.200.200.2 log file. Source address 10.100.100.1 should be rewritten to fw´s interface ip belonging to subnet 2. Is Shorewall able to handle selected nat or how should it be named? Thanks for any help. Mike ------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642