Hello, I have 2 public IP which I use to masq and alias my connection and a public www server inside my network. I can access my www server internally and externally as well. My problem is that the second public IP that I use to masq my connection could not access my internal server. This is my config ZONES net internel loc local INTERFACES net eth0 loc eth1 routeback, dhcp POLICY loc net accept net all drop all all drop MASQ eth0 192.168.100.0/24!192.168.100.200 XXX.XXX.XXX.130 eth0:0 192.168.100.200 XXX.XXX.XXX.131 eth1:192.168.100.100 eth1 192.168.100.254 RULES DNAT loc:192.168.100.0/24 loc:192.168.100.100 tcp www - XXX.XXX.XXX.130 Anything that is connected to eth0 can access the internal www without any problem. I have problems with my alias connection through eth0:0. I did try to do the following on the rule file DNAT loc:192.168.100.200 loc:192.168.100.100 tcp www - XXX.XXX.XXX.130 and also DNAT loc:192.168.100.200 fw:XXX.XXX.XXX.130 tcp www - XXX.XXX.XXX.XXX which did not work of course. I have look the documentation and could not find how to config. Can someone point me to the right direction pls. Joshua