Hi,
I'm dealin with problem how to pass thru packets form second level network.
Running CP FW-1 NG (BTW: Same problem occurs on CP FW1 4.1) with two NIC-s.
Everything works fine until I have connected another network behind FW.
Somethin like ...
(Internet)------(CP FW1 NG)-------(LAN)------(router)-------(LAN2)
FW-1 is running hiding NAT for LAN and some static NAT for internet
services like WEB, FTP ect.
I have added hiding NAT for LAN2 to acces internet.
Added route to LAN2 so FW-1 is aware of LAN2 (router betwen LAN-s is doing
classical IP routing)
Added NAT roules for communication between LAN and LAN2, as they need no
NAT to communicate.
Added access rules for LAN2 to acces LAN and internet.
Everything looks setup prefect, then we get to the problem. All packets I
get form LAN to are reported out of state.
Message is folowing:
th_flags ## message_info TCP packet out of state
For the record: I can ping devices in LAN2 from CP FW1.
Does anyone have any idea. I've lost a lot of time on that and I run out
of ideas. :-(
Best regards
Metod
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================