Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] Hide NAT arp on Linux

To: [email protected]
Subject: Re: [FW-1] Hide NAT arp on Linux
From: Scott Friedman <[email protected]>
Date: Fri, 10 Oct 2003 11:48:27 -0400
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

You need to add a static route for the hide nat to point
to the Firewall?

I've never had to do that, and dont' with the other hide
nat's on this same box.. the only difference is that this
one goes out a different interface...

Anyone else have any thoughts?


-----Original Message-----
From: Joachim Bassmann [mailto:[email protected]]
Sent: Thursday, October 09, 2003 10:16 AM
To: [email protected]
Subject: Re: [FW-1] Hide NAT arp on Linux


Hi Scott,

--On Donnerstag, 9. Oktober 2003 10:01 -0400 Scott Friedman
<[email protected]> wrote:

> which means it's not receiving an ARP response....

first I suppose that you already defined a public arp entry for your
external address on the firewall's MAC address.

Furthermore Linux needs a static route for IPs with public arps. On my
firewall I did the following for hide-NAT addresses:
route add <external IP> gw 127.0.0.1

good luck

Joachim Bassmann, Egartenweg 21, D-71334 Hegnach
------------------------------------------------------------
Erst wenn das letzte Counterstrike indiziert, der letzte Videofilm verboten,
und das Internet geschlossen ist, werdet Ihr merken, daß Ihr Eure Kinder
doch erziehen müsst. - [email protected]

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

Prev by Date: [FW-1] Possible bug in Agent Automatic Client Authentication on NG FP3 HF2?
Next by Date: [FW-1] fw logswitch command
Previous by thread: Re: [FW-1] Hide NAT arp on Linux
Next by thread: [FW-1] Secure Remote Help !
Index(es):
- Date
- Thread