[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] ARP problem
Hi, Well, if the lost ARP entry is the NAT one, I think you could enter it manually in the Cisco router configuration (The MAC address of the NOKIA box). If the lost MAC is the own AS400, you could make a static entry in the NOKIA configuration. However, I don´t know why could this behavior be, I think you must review the LAN switches. Bye, ==================================== Mauricio F. Muñoz Quevedo Security Consultant ============================================== |---------+----------------------------------------------> | | ario <[email protected]> | | | Sent by: Mailing list for | | | discussion of Firewall-1 | | | <[email protected]| | | kpoint.com> | | | | | | | | | 05/03/2003 08:47 p.m. | | | Please respond to Mailing list for | | | discussion of Firewall-1 | | | | |---------+----------------------------------------------> >----------------------------------------------------------------------------------------------| | | | To: [email protected] | | cc: | | Subject: [FW-1] ARP problem | >----------------------------------------------------------------------------------------------| Hi all, I need a help , maybe anybody has an experience about this I have network below ---------- Router ---------- | | ---------- Firewall ---------- | | ---------------- IBM AS/400 ---------------- Router is connected to WAN cloud with Frame Relay , and because the IBM AS/400 needs to access to outside world and also needs to be access from outside world, so I apply "Hide NAT" for the segment of IBM AS/400 to external interface of firewall and also I apply "Static NAT" for IBM AS/400 itself to segment between firewall and router I use Cisco router and firewall Nokia IP330 with Checkpoint NG FP 2 installed on it. And now the problem is the ARP of IBM AS/400 often get lost by itself so it can not access to outside world and also can not be accessed from outside world. I do not know why it can be happen ?? is there anyone explain to me about this ?? So how is the step I have to take to solve this problem ?? Is there any alternatif solution beside using Static NAT so I still make my IBM AS/400 can be accessed from outside world ?? I really need a help for this, Thank you for your help and attention Regards, Ario --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.459 / Virus Database: 258 - Release Date: 2/25/2003 ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] ================================================= ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|