Did you add the NAT addresses to any interfaces that have anti-spoofing enabled?
Regards,
Jim
-----Original Message-----
From: Ben Cuthbert [mailto:[EMAIL PROTECTED]]
Sent: Friday, March 16, 2001 12:34 AM
To: [EMAIL PROTECTED]
Subject: [FW1] NAT on FW 4.0 and solaris
Hi all
having some problems with my NAT setup on my network
this is the setup i have
windows NT machine internal address 192.168.0.1
windows NT machine external address lets say 10.10.10.2
FW internal address 192.168.0.1
FW external adress 10.10.10.1
i have NAT rules setup in the policy
windows NT source , to windows NT source static
windows NT dest ( external addres, to windows NT in static
and in the rules i have
windows NT , any , http ftp , accept
any , windows NT external , ftp accept
now when i make a connection from internally to lets say 145.23.23.1 on ftp
i can see it pass out the firewall by looking on the logs, it says accept but
i can't get a connection prompt all it says is timed out .
i have a static route on the fw , 10.10.10.2 192.168.0.1 1
and arp setup arp -s 10.10.10.2 (fws mac address external ) pub
but i just can't seem to get a connect is there something else i need.
Thanks
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
