Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW-1] probs. with getting started with a Dial-Up Server to ISP

To: [email protected]
Subject: [FW-1] probs. with getting started with a Dial-Up Server to ISP
From: a a <[email protected]>
Date: Thu, 6 Dec 2001 07:34:26 -0800
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

...on with my problem..a bit of a A4 page, this one.

.....
I'm trying to get going on FW-1 NG with a Eval liscence here, & can't get
any traffic flowing,
so if anyone has any experience off setting up Dial-Up server to the
Interneti using NDISWANIP \PPP Wrapper(NT)
do let me know...i don't even want to think about hitting a Solaris box
until i get it right on the NT box

I've broken everything down two-fold, Setup & Problems

*setup:*
----------------------------------------------------------------------
SYSTEM:
Windows 2K Server (Dual Boot), Dial-Up to ISP Fixed-IP Address, 5.5.5.5
(example) &
external IP address of 123.123.100.10 (example)
Firewall-1 NG + manamgement clients
2nd copy of Win2k on same server connects to Internet ~ no problems, full
traffic
"route print" identical to main copy, as inc. below

FW-1 TOPOLOGY
host: myserver
2 x interfaces, 123.123.0.0 & 5.5.0.0, (used in place of the actual
addresses)
Note:FW-1 refused to allow the actual addresses, irrespective of the
sub-mask,
IP 5.5.0.0 linked to the Internet ~ No NAT configured

IP SETUP
E:\>route print
======================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x1000003 ...[MAC ommited] ...... E100B0 Intel(R) PRO Adapter
0x2000004 ...[MAC ommited] ...... WAN (PPP/SLIP) Interface
======================================================================
Active Routes:
Network Destination-   Netmask -        Gateway  Interface
0.0.0.0          0.0.0.0        123.123.100.10  123.123.100.10
0.0.0.0          0.0.0.0        5.5.5.5         5.5.5.5
127.0.0.0        255.0.0.0      127.0.0.1       127.0.0.1
123.123.0.0      255.255.0.0    123.123.100.10  123.123.100.10
123.123.100.10   255.255.255.255 127.0.0.1      127.0.0.1
123.123.255.255  255.255.255.255 123.123.100.10 123.123.100.10
5.5.5.5          255.255.255.255 5.5.5.5        5.5.5.5
5.5.5.5          255.255.255.255 127.0.0.1      127.0.0.1
5.5.255.255      255.255.255.255 5.5.5.5        5.5.5.5
224.0.0.0        224.0.0.0      123.123.100.10  123.123.100.10
224.0.0.0        224.0.0.0      5.5.5.5         5.5.5.5
255.255.255.255  255.255.255.255 123.123.100.10 123.123.100.10
Default Gateway:   5.5.5.5
======================================================================
Persistent Routes:
  None

E:\>ipconfig /all

Windows 2000 IP Configuration

        Host Name . . . . . . . . . . . . : myserver
        Primary DNS Suffix  . . . . . . . :
        Node Type . . . . . . . . . . . . : Broadcast
        IP Routing Enabled. . . . . . . . : No
        WINS Proxy Enabled. . . . . . . . : No
        DNS Suffix Search List. . . . . . : [ommited]

Ethernet adapter Local Area Connection:

        Connection-specific DNS Suffix  . :
        Description . . . . . . . . . . . : Intel(R) PRO/100B PCI Adapter
(TX)
        Physical Address. . . . . . . . . : [MAC ommited]
        DHCP Enabled. . . . . . . . . . . : No
        IP Address. . . . . . . . . . . . : 123.123.100.10
        Subnet Mask . . . . . . . . . . . : 255.255.0.0
        Default Gateway . . . . . . . . . : 123.123.100.10
        DNS Servers . . . . . . . . . . . : 123.123.100.10

PPP adapter  Internet-Connect-plc:

        Connection-specific DNS Suffix  . :
        Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
        Physical Address. . . . . . . . . : [MAC ommited]
        DHCP Enabled. . . . . . . . . . . : No
        IP Address. . . . . . . . . . . . : 5.5.5.5
        Subnet Mask . . . . . . . . . . . : 255.255.255.255
        Default Gateway . . . . . . . . . : 5.5.5.5
        DNS Servers . . . . . . . . . . . : 5.5.10.10
                                5.5.10.20
        NetBIOS over Tcpip. . . . . . . . : Disabled
Persistent Routes:
  None

E:\>tracert www.checkpoint.com
Unable to resolve target system name www.checkpoint.com


- before u ask, the subnet masks of 255.255.255.255 mentioned may sound odd,

        but i've been using this set-up for 3 years !
----------------------------------------------------------------------


*Problems:*
No traffic flow past firewall, data is going out & reciving to my ExtIP, but
not passing thru' firewall,
e.g. a ping or tracert fails to say www.checkpoint.com



...I've created a Any-Any-Any-Accept Policy ,
however the Systems Status for Firewall-1 is "Status: NoPolicy"...am i
missing something here ?


any help would be appreciated


cheers

Sally






______________________________________________________________________________
Send a friend your Buddy Card and stay in contact always with Excite Messenger
http://messenger.excite.com

===============================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
===============================================

Prev by Date: Re: [FW-1] Alexa blocking
Next by Date: [FW-1] AW: [FW-1] DEC 2114/2113 FastEthernet-Interface
Previous by thread: Re: [FW-1] Remote syslog facility problem
Next by thread: [FW-1] AW: [FW-1] DEC 2114/2113 FastEthernet-Interface
Index(es):
- Date
- Thread