[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] Can not map NT file sharing of a machine in DMZ from Lo cal Network
You may want to try adding a manual NAT rule at says WebSrv to LocalInt orig orig... If I understand correctly, you added a manual NAT rule opposite of what I describe. When the webserver is statically translated out, a rule must be present to keep it from talking back to the internal network using its external address. -Warren. -----Original Message----- From: [email protected] [mailto:[email protected]] Sent: Wednesday, November 15, 2000 9:44 AM To: Andrew Bagrin; Firewall List Subject: RE: [FW1] Can not map NT file sharing of a machine in DMZ from Local Network Webserver works on NT,the machine on the Local Net works on Win98 but neither of them have IPX loaded on them. Any other recommendations? Thanks in advance Birant Akarslan -----Original Message----- From: Andrew Bagrin [mailto:[email protected]] Sent: Wednesday, November 15, 2000 4:30 PM To: Birant AKARSLAN; Firewall List Subject: Re: [FW1] Can not map NT file sharing of a machine in DMZ from Local Network What are you using as your webserver? If its NT and you have IPX loaded on it, then NetBios will bind to IPX first. There is no real way to change the binding order that I know off. I just got rid of IPX on the NT systems that I needed to map across the FW Andrew Bagrin Secure-1www.secure-1.com ----- Original Message ----- From: Birant AKARSLAN <[email protected]> To: Firewall List <[email protected]> Sent: Wednesday, November 15, 2000 8:51 AM Subject: [FW1] Can not map NT file sharing of a machine in DMZ from Local Network > > Hi! > > One of our customers can not map the file sharing of his webserver in the > DMZ network from his Local Net. > In the Rule Base, all NBT services (ports 137,138,139) from Local Net to the > Webserver is accepted. I have also tried not NATting from Local Net to DMZ > but it did not work. On the other hand the machine in the Localnet can ping > the webserver,but it can neither find the machine as a computer nor see it > in the Network Neighborhood. I have also tried to Nat(Static) the machine in > the Localnet to the DMZ-interface of Firewall,but it did not work either. I > know that it is an old issue,but acting as a newbie, can someone help me? > > As an addition the IP block of the Local Net is illegal and WebServer's is > legal. > > Thaks in advance, > Birant Akarslan > > > > ============================================================================ ==== > To unsubscribe from this mailing list, please see the instructions at > http://www.checkpoint.com/services/mailing.html > ============================================================================ ==== ============================================================================ ==== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ============================================================================ ==== ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|