RE: [FW1] Local.arp file

[John Qian]

Hi Flavio, Why not trying to reverse the order of route entry in local.arp ? like: A.B.C.z     pp-cc-gg-hh-kk      John Qian      -----Original Message----- From: Flavio Muscetra [mailto:[EMAIL PROTECTED]] Sent: Monday, July 03, 2000 9:32 AM To: Julian Bain Cc: Fw-1-Mailinglist (E-mail) Subject: Re: [FW1] Local.arp file   ----- Original Message ----- From: Julian Bain To: 'Flavio Muscetra' Cc: Fw-1-Mailinglist (E-mail) Sent: Monday, July 03, 2000 6:23 PM Subject: RE: [FW1] Local.arp file You also need a static route in the NT box directing packets back to the web server.  Use route add -p command: route add -p A.B.C.z 10.10.11.x Also, to enable your proxy arp entry you must stop and start the firewall   Julian Bain   I have yet this configuration but it doesn't work. Is it mandatory to set something on the router (static route)?   Thanks,   Flavio     -----Original Message----- From: Flavio Muscetra [mailto:[EMAIL PROTECTED]] Sent: Monday, July 03, 2000 11:00 AM To: [EMAIL PROTECTED] Subject: [FW1] Local.arp file Importance: High I'm configuring a FW-1 4.0 (SP5) on a NT box 4.0 SP6a with 3 adapters:   * one is external A.B.C.0/24 * one is for DMZ 10.10.11.0/24 * one is for the internal LAN 10.10.10.0/24. The DMZ and the internal LAN are private nets.   I've a web-server on DMZ (10.10.11.x) with aa-bb-cc-dd-ee MAC address. This web server is known in internet with A.B.C.z address. The external interface of the firewall is A.B.C.y with MAC pp-cc-gg-hh-kk To reach the webserver i put in the local.arp file the following line:   pp-cc-gg-hh-kk        A.B.C.z   It doesn't work! Anyone one knows if there's a bug in the FW-1 proxy arp? Or maybe I made a mistake?   Thanks in advance,   Flavio