| |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [FW-1] Routing issue
- To: [email protected]
- Subject: Re: [FW-1] Routing issue
- From: Ken Kightly <[email protected]>
- Date: Fri, 12 Jul 2002 14:14:41 -0700
- Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
- Sender: Mailing list for discussion of Firewall-1 <[email protected]>
- Thread-index: AcIp31+c+mJAaLbWROW9KvJuIZXp0AACUnZg
- Thread-topic: [FW-1] Routing issue
If you can ping this machine with the firewall rules disabled, then it is not likely a routing issue. The fact that you cannot ping the box after the firewall comes up makes me believe it is a rule issue, or a NAT translation issue. Do you have a rule to allow ping to this system from the firewall? Add a rule as a test that allows the firewall object to ping that system and see if it works. I assume you have the machine already defined as an object on the firewall.
Ken.
-----Original Message-----
From: GARY SMITH [mailto:[email protected]]
Sent: Friday, July 12, 2002 12:01 PM
To: [email protected]
Subject: [FW-1] Routing issue
I have FW4.1 on NT with 3 nics one nic public address,
two nics internal private address, 2nd nic 192.168.1. 255.255.255.0 and
the 3rd nic 192.168.100.1 255.255.255.0
on the 3rd nic I have a web server behind it using Static nat with an
address of 192.168.100.2 255.255.255.0 I added a local.arp and a route in
the routing table no problem. Now I want to introduce a second machine
behind this nic using 192.168.100.3 255.255.255.0 which I am going to
again use Static nat to hide.
The problem I am having is I cannot ping this box from the firewall or can
i ping the firewall from this box yet I can ping the other machine
192.168.100.2 from both machines. If I restart the firewall I can ping it
from the new machine just before the checkpoint services start then I am
blocked again.
Is this a routing problem or is this a checkpoint configuration problem.
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
|
|
