NETWORK PRESENCE ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT
 


Search
display results
words begin  exact words  any words part 
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [FW1] firewall and routing...

Hi,

it is not quite clear to me what your topology really is. Firewall routing
is always static routing and static routing is always next hop routing. If
your topology is like this:

172.x.x.x--330--192.x.x.x
    I
    R
    I
166.x.x.x

You need a route for "166.x.x.x gateway 172.x.x.101" at the 330. If your
firewall is the default gateway for the 192.x.x.x subnet, this should be all
you need. If the firewall is not the default gatway you need a route like
"166.x.x.x gateway <yourFirewall>" on the defaultgateway of the 192- subnet
OR on every client in this subnet.

--Joerg


-----Original Message-----
From: D. Archibald Smart
To: [email protected]
Sent: 5/15/01 3:14 AM
Subject: [FW1] firewall and routing...


I have a nokia 330 with machines in the dmz(172...xxx) and behind
the
firewall (192.xxx.xxx.xxx).

I have an outside data provider that has a cisco router
(172.xxx.xxx.101) in
my dmz.

I have added a static route to the nokia so that traffic from the dmz,
destined for my providers network (166.xxx.xxx.xxx) goes out of the
cisco
router. and that works just fine.

However, what I need to do is get the machines BEHIND the firewall to be
able to send and receive traffic to the (166.xxx.xxx.xxx) network via
the
cisco router. while still using the default gateway for everything else.

I've been messing with for a couple of days and cant quite get it. Any
help
would be greatly appreciated.


Archibald



========================================================================
========
     To unsubscribe from this mailing list, please see the instructions
at
               http://www.checkpoint.com/services/mailing.html
========================================================================
========


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================


 
----------------------------------

ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT SITE MAP LEGAL
   All contents © 2004 Network Presence, LLC. All rights reserved.