I've been talking with Checkpoint about this very subject.
As I understand it, here's what you'll have to do:
1. Create a rule to allow OSPF to pass through the firewall (this is a
defined service in 4.x).
2. On each router located on either side of the firewall, define the other
router as an OSPF Neighbor. OSPF link-state tables should then be passed
between the routers.
If you're not running 4.x, then you'll have to install, compile, and
configure gated (good luck!).
Randall
At 05:10 PM 7/13/00 +1000, Beyer, Steve wrote:
>Hello All,
>
>I have a situation where I have two routers that need to form an adjacency
>to run OSPF, but they are separated by Firewall-1 running on a Solaris
>machine. Can this be done, or does the firewall need to be an OSPF
>participant? If so, what are the security implications, and what software
>is required for the firewall to participate?
>
>Thanks in advance.
>
>Cheers,
>
>Steven Beyer
>[EMAIL PROTECTED]
>
>
>
>================================================================================
> To unsubscribe from this mailing list, please see the instructions at
> http://www.checkpoint.com/services/mailing.html
>================================================================================
>
-
"As soon as men decide that all
means are permitted to fight an evil,
their good becomes indistinguishable
from the evil they set out to destroy."
--Christopher Dawson
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
