I think you might find this discussion useful:
http://www.securityportal.com/list-archive/fw1/2001/Jan/0087.html
Hope it helps!
Jason
At 10:20 PM 1/17/01 -0500, Jeff \"Gus\" Ensminger wrote:
>
>I am at a roadblock on how to solve this issue:
>
>On an NT network I want to host the website for domain "onlydomain.com" on a
>web server (192.168.1.1),
>and host email for the same "onlydomain.com" on a separate email server
>(192.168.1.2).
>Both servers reside the same one fw-1 server.
>I only have one public IP (209.46.53.10)available to use for both NATs.
>I have created net objects for both as such:
> webserver valid=209.46.53.10, real=192.168.1.1
> mailserver valid=209.46.53.10, real=192.168.1.2
>
>I have the proper .arp entry of "209.46.53.10 [mac address of fw-1 ext
>nic]".
>
>I have rules allowing for access (in and out) for both servers with the
>proper protocols (HTTP, and SMTP, Pop3, respectively).
>
>The problem is that only the mail requests are properly routed. The web
>requests are routed to the mail server also, resulting in a page error for
>the client browser.
>
>Regardlesss of the rule-order of the two, the same result occurs.
>However, if I delete the net object of the mailserver, the web requests are
>fulfilled properly.
>
>Is it not possible to use one public IP to address both email and web server
>for the same domain, through NAT?
>
>
>
>===========================================================================
=====
> To unsubscribe from this mailing list, please see the instructions at
> http://www.checkpoint.com/services/mailing.html
>===========================================================================
=====
>
>
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
