Hello again, I have another question regarding iptables, this time with regards to its role vs the duties of route. I was attempting to throw anything coming in on eth1 (the local area network interface in my firewall) on a specific 10-dot address to forward out of an alias on eth0 (namely eth0:1). I started to do this with the following iptables command... iptables -t filter -A FORWARD -i eth1 -o eth0:1 -s 10.0.0.99 it occurred to me after doing this that I probably am not forwarding anything with this rule at all, it would simply match on a packet with the source address 10.0.0.99 coming in on eth1 and leaving on eth0:1 (directed to do so by some other process, possibly the routing tables) and do nothing with it. It seems to me that the actual act of forwarding would have to be done with an entry in the routing table. Am I high or does this make sense? I'm not fully comfortable with setting up a firewall yet so one of you gurus confirming this would make me much more confident to proceed. Anyway, as a follow up question, if I'm right in my assumption that I should move this task out of iptables and into the routing tables what would the command be to do this? Something like `route add ...`, I'm not sure where to go from there (like I said, I'm not comfortable with this yet). As always any help is greatly appreciated. Thanks, Ben.