[Qtx]

What are you actually trying to achieve? Do you run any servers on your network that need a direct connection from the internet to them, such a webserver on your network?

IPfire can sit behind a router usually. A common setup is to disable DHCP on the router and enable it on the IPfire box (which has a static IP on a different subnet). Your IPfire red port gateway points to the ISP router.

From memory... an example setup would be:

IPfire red port
IP 172.31.213.2 (same subnet as the gateway below, ie .213.)
Gateway 172.31.213.1 (or whatever your ISP router is)

IPfire green porn
IP 172.31.215.1
Gateway 172.31.213.2

Setup your DHCP on IPfire to give out whatever range of 172.31.215.* IP's you want and obviously setup DNS if you are using IPfire for that too and include that in the DHCP setup. You can assign static LAN IP's too for servers.

From that point you can filter and log all outgoing traffic and use whatever IPfire features you want.

It has been a long time since I had cable and never had a VM business connection so hopefully someone can confirm or correct this in case there is something of the VMB setup that stops this working.

Usually you can forward ports in from a router to the firewall and beyond but again,m im not sure if something with VMB stops this.