Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW1] local.arp on W2K - solution

To: <[email protected]>
Subject: [FW1] local.arp on W2K - solution
From: [email protected]
Date: Mon, 19 Mar 2001 17:19:38 -0500
Sender: [email protected]

Got this from Checkpoint last week. Haven't tried it yet, but I suspect
that it'll work...

Note that you need to run the "fwparp" command(s) EVERY time you reboot the
box. I asked if anyone has scripted this yet, and CP said that they didn't
know of anyone having done so, but that it should work as long as the
script waits until the fw service has already started.

Dave Grabowski
System Arts, [email protected]
----- Forwarded by David Grabowski/SystemArts on 03/19/2001 05:17 PM -----
                                                                                                                                                
                    [email protected]                                                                                                             
                    kpoint.com             To:     [email protected]                                                                    
                                           cc:                                                                                                  
                    03/14/2001             Subject:     TTxx, Fwparp.exe                                                                     
                    11:44 AM                                                                                                                    
                                                                                                                                                
                                                                                                                                                




Hi Dave,

Here is the article we discussed over the phone.

How to configure Static NAT on Windows 2000

Fact: FireWall-1 4.1 SP2
Fact: Windows 2000
Fact: Static NAT
Fact: fwparp.exe
Fact: ARP
Fact: Routing and Remote Access
Fact: IP Forwarding

Fix: Please follow these set of actions:
1) Disable the "routing and Remote Access" (To access this service please
go to: start -> programs -> Administrative Tools -> Routing and Remote
Access -> right click the
server and press disable)
2) Reboot the machine
3) Open the registry from command line by running the command "regedit"
4) Go to ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentContralSet\Services\Tcpip\Parameters
5) Change the value to "1" in the Dword key "IPEnableRouter"
6) Restart  the machine
7) Now you can run the 'fwparp.exe' utility as follow: 'fwparp static_ip
external_fw-1_ip'
8) Add route on the FireWall-1 routing table as follow: 'route add -p
static_ip invalid_ip'
9) Start the FireWall-1 machine (fwstart)
10) Install the policy (after verifying that you've configure the static
NAT on the host)

(Note that you have to run the 'fwparp.exe' after every Reboot)

Download the compressed version of fwparp.exe: <a href="
http://support.checkpoint.com/kb/docs/public/firewall1/4_1/zip/fwparp.zip
">fwparp.zip</a>

Thanks for calling Check Point Technical Support.

Regards,

Check Point Technical Support.







================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: [FW1] SecuRemote routing prob
Next by Date: [FW1] SecuRemote routing prob - and again
Previous by thread: Re: [FW1] Errors in event log
Next by thread: [FW1] SecuRemote routing prob - and again
Index(es):
- Date
- Thread