[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] telnet to a internal client
You have to configure the arp proxy : arp-s IPtranslated MacAddress (pub) and add a route : route add ext-address int-address and configure the IP spoofing : "This net + ext-adress" on internal card ethernet of the firewall. Good luck ! Jean-Luc. > -----Message d'origine----- > De: Pope, David [SMTP:[email protected]] > Date: vendredi 2 mars 2001 14:59 > À: [email protected] > Objet: [FW1] telnet to a internal client > > > Hi all, > > I am new to Checkpoint and am wondering how to properly set up a rule to > allow a external client to telnet to an internal NATed client. > I have given the internal box a valid external address through NAT. > I have set up a rule with the source as both the external and internal > clients and the destination as both the external and internal clients with > the service of "telnet", "accept". > In the log viewer the connection is accepted on rule 1 which is the proper > rule, but immediately after the connection is "rejected" on rule 0, same > port, same time, etc. > Is it the return packet that is being rejected? > Why do I have a "reject" on rule 0 if none of my implied rules have > "reject" > in their actions? > > Any help is appreciated, > > Dave Pope > > > ========================================================================== > ====== > To unsubscribe from this mailing list, please see the instructions at > http://www.checkpoint.com/services/mailing.html > ========================================================================== > ====== ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|