On Mon, 03 Nov 2003 17:57:36 GMT, James wrote:

> Any ideas on what I'm doing wrong is
> most appreciated.....

You have no rule that would allow the redirected connections to
pass out on $dmz_if (xl0), and with a default block policy, that
means the connections get blocked.

> pass out on $int_if from any to
> $int_if:network keep state

This allows external and DMZ hosts to open connections to the
internal network, maybe you want $dmz_if instead of (or in
addition to) $int_if here?

Daniel