Yes, because the firewall you are using employs the use of NAT. The external (DMZ)
hosts cannot penetrate the firewall and access internal (hidden and probably
unregistered addresses) without mapping a legal (registered) address to an internal
(hidden) address . If you could telnet into your network from outside NAT would not be
working very well. :) Oh, by the way, make sure that port 23 (telnet) is allowed
inbound for the host or particular hosts that you need to telnet to. Like I said
though, map a registered address to one of you internal hidden addresses first.
>>> Bogdan Moldovan <[EMAIL PROTECTED]> 04/15 1:46 AM >>>
Hy guys ... I need your help... please advise me
INTERNET
|
|
|
--------------------------
| PIX |
| |
| |-----------------------
193.230.160.128/193.230.160.224 (DMZ)
-------------------------
|
|
|
|
Internal zone
10.0.0.0/255.0.0.0
I can make NAT form inside to dmz and I can telnet from inside to a machine
in the dmz, but I need the other way too... I can not telnet from dmz to a
machine in the inside zone.! Any ideea why?
Thank you very much
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
