Firewall/NAT

Hi All

Was wondering if you could help?  I am trying to implement m0n0wall as a firewall and to monitor user traffic.

I have been able to successfully set this up. My problem is that we have 5 static ip addresses assigned to our router which currently does 1:1 NAT to the LAN (without m0n0wall). I can access my IIS server  by mapping my static IP to the LAN address of the IIS server using 1:! NAT on the router.

I now want to put m0n0wall between the router and the LAN and have my IIS server in a DMZ. However I cannot get my rules correct to be able to assign the static IP from the router to m0n0wall to the IIS server. Do I need to switch off the NAT on the router ? In which case, how does it know to route traffic to any one of the static IPs to the internal LAN ? Should I set all 5 Static IP's on the router to NAT to the m0n0wall and then from there add 1:1 NAT again to the DMZ ? Sorry this is probably a very basic question but I have been struggling for a week now.

Regards

Hi

In the end this was a newbie  question.

I have changed over to pfSense and switched off NAT on the router. I then assigned one of the public IP's to the WAN NIC on pfSense. Set up IP alias' and was able to do NAT on pfSense.

All seems to be working 100%.

Could You explain Your current config with a network diagram containing addressing information too?

As far as i understood Your scenario, You i think You forgot to configure ARP Proxy on m0n0.
It's doable on m0n0 too.