Jon,
search www.phoneboy.com/fw1 for the following FAQ: Can't Talk to Translated IP
from Internal Net.
I think that'll explain your problem.
Cheers and good luck,
Olaf
From: Jon Jackson <[EMAIL PROTECTED]> on 08/08/2000 15:42 GMT
|--------->
| |
|--------->
>--------------------------------------------------------------------------->
| |
>--------------------------------------------------------------------------->
>-------------------------------------------|
| |
>-------------------------------------------|
|--------->
|To: |
|--------->
>--------------------------------------------------------------------------->
|"'[EMAIL PROTECTED]'" |
|<[EMAIL PROTECTED]> |
>--------------------------------------------------------------------------->
>-------------------------------------------|
| |
| |
>-------------------------------------------|
|--------->
|cc: |
|--------->
>--------------------------------------------------------------------------->
| (bcc: Olaf Breil/MUC/AMADEUS) |
>--------------------------------------------------------------------------->
>-------------------------------------------|
| |
| |
>-------------------------------------------|
|--------->
| |
|--------->
>--------------------------------------------------------------------------->
| |
>--------------------------------------------------------------------------->
>-------------------------------------------|
| |
>-------------------------------------------|
|--------->
|Subject: |
|--------->
>--------------------------------------------------------------------------->
|[FW1] RE: Pinging |
>--------------------------------------------------------------------------->
>-------------------------------------------|
| |
>-------------------------------------------|
I have checked out everything I have received so far.
I have the local.arp file in %systemroot%/fw/state.
I have the static route in the os.
I have stopped and started the service, twice.
I can ping the number from an external location, just not internal. Just to
clarify, what I want to do is ping from an internal, unregistered number to
an external, registered number that is natt'd back to the same internal,
unregistered lan my orig. request came from, just different machine and ip.
-----Original Message-----
From: Jon Jackson [mailto:[EMAIL PROTECTED]]
Sent: Monday, August 07, 2000 5:08 PM
To: Firewall-1 listserv (E-mail)
Subject: [FW1] Pinging
I am trying to ping an internal machine by its nat'd public address and get
no reply. Is this possible with FW-1. Here is my setup
FW-1 4.0 sp1
Win NT
Router - public address - Firewall - DMZ unreg. addresses
|
internal
unregistered addresses
For instance:
internal address is 10.10.10.10 nat'd to 111.111.111.111
>From machine 10.10.10.11 ping 111.111.111.111. Get time out on all 4 tries
I know I can ping private address directly but for testing I need it to go
through the firewall.
Thanks for the help
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
