[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] Traffic between subnets - problem
Yes, the address translation rules look ok. For a 1 to 1 NAT, use Static and ensure the firewall module is arping for the address you choose for your Static NAT. For our static NAT's, we'll have an object for the internal and an object for the external, say ... www.site.org 10.10.10.10 www.site.org-public 1.1.1.1 -----Original Message----- From: Jonathan Nichols [mailto:[email protected]] Sent: Thursday, July 03, 2003 7:25 PM To: [email protected] Subject: Re: [FW-1] Traffic between subnets - problem Laidlaw, Rob wrote: > You need to create two rules. The first being the rule you have > saying that dmz -> known should remain unchanged. Below that rule, > put another rule saying that dmz -> any nat to whatever. Ok. So I should have dmz -> "Known" -> Any = Original = Original = Original -> FW1box dmz -> Any -> Any = Hide = Original = Original -> FW1box Correct? (I tried to keep the columns in order.. :) If I choose right click the column, there's "Add (Static)" and "Add (Hide)" - Both of them bring up my list of network objects. What should I choose? When doing the 1 to 1 NAT for the DMZ, I've been choosing the (Hide) NAT choices. Should I make a new network object just for a NAT hide object? Sorry for being so lost. I really *am* lost and amazed that I got this far sometimes. :) -Jonathan ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] ================================================= ******************************************************************************** This electronic transmission contains information from Methodist Health System and should be considered confidential and privileged. The information contained in the above messages is intended only for the use of the individual(s) and entity(ies) named above. If you are not the intended recipient, be aware that any disclosure, copying, distribution, or use of this information is prohibited. If you receive this transmission in error, please notify the sender immediately by return e-mail. Methodist Health System, its subsidiaries and affiliates hereby claim all applicable privileges related to the transmission of this communication. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|