Re: Same Class C both sides of a Firewall? (Newbie question)

Wed, 3 Nov 1999 13:08:10 -0800 

Get your ISP to assign you a small usable, routable address space (/29 or
/30),
and give the outside interface of the firewall an address out of that pool,
while
establishing default routes in the firewall back to the router. This will
also leave you
with potential address space for a dmz (thinking ahead if you don't already
have one).

----- Original Message -----
From: <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, November 03, 1999 4:25 AM
Subject: Same Class C both sides of a Firewall? (Newbie question)


>
>
>
>
>
> I am trying to replace a Guardian Firewall with Checkpoint Firewall 1
(v4).  The
> router's IP address is 194.217.66.1, as is the internal network card on
the
> firewall.  Guardian sets up a Virtual adapter to allow this to happen.
> Unfortunately, Firewall-1 doesn't work the same way and I'm now banging my
head
> on the wall trying to work this out.  The only alternative is to assign a
> private Class C internally but as all addresses are currently static this
would
> mean updating a couple of hundred workstations.
>
> The Guardian Firewall's ARP ini file looks like this:
>
> [Common]
> Virt_Router_IP_Address=192.168.1.2  (adapter's default gateway IP)
> Real_Router_IP_Address=194.217.66.1  (router's IP Address)
> GuardianIPAddress=194.217.66.244  (adapter's virtual IP)
> DefaultARP=NO
>
> What it physically looks like is:
>
> Cisco Router (194.217.66.1) > FW External NIC (192.168.1.2) >FW Internal
NIC
> (194.217.66.1)
>
> Can this be done?
>
> Mick
>
> E-MAIL DISCLAIMER: The information in this e-mail is confidential and may
be
> legally privileged. It is intended solely for the addressee and access to
the
> e-mail by anyone else is unauthorised. If you are not the intended
recipient,
> any disclosure, copying, distribution or any action taken or omitted to be
taken
> in reliance on it, is prohibited and may be unlawful. When addressed to
our
> clients, any opinions or advice contained in this e-mail are subject to
the
> terms and conditions expressed in the governing client engagement letter
or
> contract. If you have received this is e-mail in error please forward to
> [EMAIL PROTECTED]
>
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]

-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]

Reply via email to