i have I pforwarding enabled, it just seems that whenver I add the third
network interface, that NT box does not route any longer. Looks like I need
to loook further, and I am so releived to hear I can use the NT box for
this. (Far cheaper than using Unix.)
Thanks everyone
----- Original Message -----
From: "Ashleigh Martin" <[EMAIL PROTECTED]>
To: "Josh Medina" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>;
<[EMAIL PROTECTED]>
Sent: Thursday, July 26, 2001 11:41 PM
Subject: RE: [FW1] Anti-spoofing
>
> I'm not sure of your understanding of Windows NT and routing but we have
> several clients running fw4.1 sp3 on a windowsNT4 server sp6a, with
> external, internal and DMZ subnets. All routing is working fine. In two
> cases, the client have two DMZ's as well as an internal and external
> network....
>
> it does work...
>
> My 2c...
>
>
>
>
> "Josh Medina" <[EMAIL PROTECTED]>
> Sent by: To:
<[EMAIL PROTECTED]>
> [EMAIL PROTECTED] cc:
<[EMAIL PROTECTED]>
> kpoint.com Subject:
RE: [FW1] Anti-spoofing
>
>
> 27/07/2001 06:13 AM
>
>
>
>
>
>
>
> This raises a question for me. I am attempting to run three interfaces on
> my NT checkpoint fw-1 SP3 box, in the same configuration (internal,
> external, DMZ). but apparently NT can not route between three NICs, is
this
> something I have to run a UNIX, or Sun box for ? ...what about windows
2000
> advanced server?
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]] On Behalf Of
> Don Leeper
> Sent: July 25, 2001 9:53 AM
> To: '[EMAIL PROTECTED]'
> Cc: '[EMAIL PROTECTED]'
> Subject: [FW1] Anti-spoofing
>
>
>
> I was wondering if someone could give me your input on anti-spoofing.
> I have 3 interfaces on my FW:
> DMZ 192.168.2.1
> External 63.64.1.1
> Internal 192.168.1.1
> I have a DNS server and web server sitting on the DMZ. Which needs
to
> be open to the public.
> I have my email server and one web server on the Internal. They need
> to be accessible to the public as well. All addresses that are for
> the public are nated. Could someone tell me how you would set up the
> anti-spoofing on the FW that won't affect my setup but protect me? I
> noticed in my logs that someone was trying to get in using private
> addresses. Thanks for your help in advance. (I did look it up but I
> think its better to hear how others do it!) Kind of confusing....
>
>
>
>
>
>
>
> Donnie Leeper
>
>
>
>
>
>
>
>
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
