Tally wrote:
>
> my question is about the interaction between the
> router and ext interface of the firewall.
> say we have an internal host which has been
> NATed to the valid IP addresses(one from the
> range that we have).
>
> here is the crux. once the packet from the Internt
> reaches the router , how does it manage to go to
> the internal host ? I mean since the IP address of
> the router and the NATed Ip address in the packet
> belong to the same network , the router would
> do an ARP. and since there is no host by that
> IP address , the connection would drop.
Sounds like you are talking about FW-1. This is a common problem but
there are a number of ways to get around it. Check out:
http://www.geek-speak.net/fw1/fw1&nat1.html
Happy hunting,
Chris
--
**************************************
[EMAIL PROTECTED]
* Multiprotocol Network Design & Troubleshooting
http://www.amazon.com/exec/obidos/ASIN/0782120822/geekspeaknet
* Mastering Network Security
http://www.amazon.com/exec/obidos/ASIN/0782123430/geekspeaknet
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
