i would like to thanks you two, thanks :-) ''use the bridge, luke'' was the hint i needed, i found everything else on google and in the relevant man pages.
the firewall is mostly already configured, it will soon be replacing our current linux router, the firewall rules are *much much much* more readable/maintainable :-) -- error: one bad user found in front of screen
