[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [FW1] local.arp on W2K - solution
Got this from Checkpoint last week. Haven't tried it yet, but I suspect that it'll work... Note that you need to run the "fwparp" command(s) EVERY time you reboot the box. I asked if anyone has scripted this yet, and CP said that they didn't know of anyone having done so, but that it should work as long as the script waits until the fw service has already started. Dave Grabowski System Arts, [email protected] ----- Forwarded by David Grabowski/SystemArts on 03/19/2001 05:17 PM ----- [email protected] kpoint.com To: [email protected] cc: 03/14/2001 Subject: TTxx, Fwparp.exe 11:44 AM Hi Dave, Here is the article we discussed over the phone. How to configure Static NAT on Windows 2000 Fact: FireWall-1 4.1 SP2 Fact: Windows 2000 Fact: Static NAT Fact: fwparp.exe Fact: ARP Fact: Routing and Remote Access Fact: IP Forwarding Fix: Please follow these set of actions: 1) Disable the "routing and Remote Access" (To access this service please go to: start -> programs -> Administrative Tools -> Routing and Remote Access -> right click the server and press disable) 2) Reboot the machine 3) Open the registry from command line by running the command "regedit" 4) Go to -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentContralSet\Services\Tcpip\Parameters 5) Change the value to "1" in the Dword key "IPEnableRouter" 6) Restart the machine 7) Now you can run the 'fwparp.exe' utility as follow: 'fwparp static_ip external_fw-1_ip' 8) Add route on the FireWall-1 routing table as follow: 'route add -p static_ip invalid_ip' 9) Start the FireWall-1 machine (fwstart) 10) Install the policy (after verifying that you've configure the static NAT on the host) (Note that you have to run the 'fwparp.exe' after every Reboot) Download the compressed version of fwparp.exe: <a href=" http://support.checkpoint.com/kb/docs/public/firewall1/4_1/zip/fwparp.zip ">fwparp.zip</a> Thanks for calling Check Point Technical Support. Regards, Check Point Technical Support. ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|