These particular machines actually need their public interfaces, but I agree that I'll have to assign additional public IPs as aliases on the firewall and use static NAT to associate outbound mail with those interfaces. I was hoping to avoid using additional IPs in this /27, but it's looking unavoidable.
|