[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] Nat'ing a single service on NT
Neither, it simply acts (if I understand it properly) as an SMTP gateway so all I need FW1 to do is redirect traffic intended for a.b.c.61 to a.b.c.60... This is replacing VirusWall (TrendMicro) which did use CVP, I am 99% sure I got rid of all its configuration from FW-1. Cheers, Charles -----Original Message----- From: Damian Jaume [mailto:[email protected]] Sent: 19 December 2001 14:24 To: [email protected] Subject: RE: [FW-1] Nat'ing a single service on NT Does the Mailsweeper uses CVP protocol to comunicate with te firewall ore does it acts as a SMTP server and then redirect the mails to the real smtp server? -----Mensaje original----- De: Mailing list for discussion of Firewall-1 [mailto:[email protected]]En nombre de Hobbs, Charles Enviado el: martes, 18 de diciembre de 2001 7:36 Para: [email protected] Asunto: [FW-1] Nat'ing a single service on NT I am having a problem setting up NAT on FW-1 v4.1 on NT4.... Currently we have an SMTP mail server at IP address a.b.c.61 in our DMZ (Firewall interface to this segment is a.b.c.62 mask 255.255.255.192) I am trying to implement Mailsweeper on a host a.b.c.60 and before I try and get our ISP to change our mx record I want to set up NAT to redirect SMTP targeted at a.b.c.61 to a.b.c.60. I suspect I am missing something simple but I have tried both using automatic address translation by adding a "legal address" of a.b.c.61 to the Mailsweeper object (although this will nat all services which I don't want) but this does not work. If I attempt to telnet with the rule in place to the a.b.c.61 address I see the traffic apparently being translated in the FW-1 log but I do not get a connection... The same happens if I manually setup a translation of any/a.b.c.61/smtp to orig/a.b.c.60/orig What am I missing (I have tried creating a local.arp with a.b.c.60 and its mac address and rebooted but no change)... Cheers, Charles This email is confidential and should not be used by anyone who is not an original intended recipient. If you receive this communication in error, please e-mail to [email protected] Ajilon Services Limited cannot accept liability for statements made which are clearly the sender's own and are not made on behalf of Ajilon Services Limited. No statement shall be construed as giving industrial/confidential advice within/outside the United Kingdom. ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= If you have any questions on how to change your subscription options, email Ron Alcatraz at: [email protected] ================================================= This email is confidential and should not be used by anyone who is not an original intended recipient. If you receive this communication in error, please e-mail to [email protected] Ajilon Services Limited cannot accept liability for statements made which are clearly the sender's own and are not made on behalf of Ajilon Services Limited. No statement shall be construed as giving industrial/confidential advice within/outside the United Kingdom. ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|