We have the same issue in New Zealand. the local telco delivers the Nokia
M10 router with NAT. There are several fixes, I haven't tried them all. The
first is to create a pinhole for IP Type 50, protocol type 'OTHER'. Some
ADSL routers allow you to do this, others don't. The latest revision of the
Nokia firmware does. Another fix seems to revolve around using ESP not AH. I
haven't tested this, but the explanation is that ESP does not include the
source IP address in the checksum.
Craig/
-----Original Message-----
From: Ronny Vaningh [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, June 20, 2000 9:54 AM
To: Fw-1-Mailinglist
Subject: [FW1] firewall behind NAT-ting ADSL router
I want to connect my home office (yes have firewall-1 not the cracked one)
to a permanent ADSL connection.
The drawback is that the Belgian telco is delivering a NAT router with an
official ip on the outside
which NAT's all my internal ip's on the inside.
This is not a real problem but I'm using IKE tunnels and they use the
external ip of the firewall to encapsulate.
Anybody any idea how to solve this
Thanks
Ronny
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
