Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [FW1] NAT problem

To: "'[email protected]'" <[email protected]>, [email protected]
Subject: RE: [FW1] NAT problem
From: Paul Carmichael <[email protected]>
Date: Tue, 7 Nov 2000 12:35:48 +1100
Sender: [email protected]

Carlos,

Check that you have set up the the nat rule as static. the other thing to do
is check that the anti spoofing rules are not coming into play. is is any
thing showing up in the logs?

regards


-----Original Message-----
From: Carlos Infante [mailto:[email protected]]
Sent: Monday, 6 November 2000 7:57 PM
To: [email protected]
Subject: [FW1] NAT problem


**************************************************************
This message has been scanned for viruses.
**************************************************************


Hello all,
I have a problem with my NAT
I'm using a ftp server with a private address 10.x.x.x. because I want the
external users grant access to the machine I'm performing NAT with a
external IP in the subnet of the external interface of the firewall x.x.x. 4
for the firewall and x.x.x.5 for the NATed address of the ftp server.

I added the next  line in the cache arp  of the firewall module.

arp -d <ip NATed of the ftp server> <MAC address of the firewall> pub

also I added a line in the routing table of the firewall

route add <ip NATed op the ftp> <ip real  of the ftp> 1

I can ping from the inside to the outside (this rule is only for testing and
I will disallow any kind of traffic from the dmz to anywhere) But when I
ping from the outside to the NATed address I can't access to the ftp server
(the think is I can ping to the external interface of the firewall)

Probably I missed anything but I can't find it.

Thanks in Advance

___________________________________
Carlos Infante Bello
Network Systems Engineer
NPS, Lucent Technologies
Ronda de Valdecarrizo, 6
28760 Tres Cantos (Madrid) Spain
Tel: +34 91 807 8221
Mobile: +34 646 485 207
e-mail: [email protected]
___________________________________



============================================================================
====
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
============================================================================
====


**********************************************************************
To stay up to date with the latest SecureNet news and events click on
the following link direct to our website www.securenet.com.au/news


This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the system manager.

This footnote also confirms that this email message has been swept by
MIMEsweeper for the presence of computer viruses.

www.mimesweeper.com
**********************************************************************


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: Re: [FW1] Hong Kong / SecureRemote / VPN problems
Next by Date: [FW1] RE: Multiple ISPs
Previous by thread: RE: [FW1] NAT problem
Next by thread: [FW1] H323 v2
Index(es):
- Date
- Thread