I'm running Gauntlet 5.0 on NT 4.0 SP6a. I'm dynamically nat'ing a non-routable inside network to a single outside address (fw external interface). How do I get it to pass ICMP ttlexpired messages (tracert) back through to the originator inside my network? ICMP echo is working fine and I understand the problem with ttl expired msgs, but not how to make this work Thanks much John Alexander Silver Spring, MD - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
