Chris, I'm in the process of constructing an Internet site and am using GB-Pro. A first experience at both networking and firewalls. As I've been scouring the GB docs over the past weeks, the IP Pass Through concept is still not clear to me.
For instance in Ed's case where he wants to allow the PSN to be able to access the PROtected network. It seems that IP Pass Through would therefore allow 192.168.1.0/24 packets on to the 192.168.0.0/24 network. To the best of my knowledge, no hosts on the 192.168.0.0/24 network would respond to packets from the other network. I know I'm missing something here but I haven't been able to figure out what it is yet. I am eager for insight on this subject. Jon Jon Schlegel [EMAIL PROTECTED] At 09:35 PM 10/20/2001 -0500, Chris Green wrote: --------------------- Attention ----------------------------- A digest version of this list is now available. Send email to [EMAIL PROTECTED], with the following message: subscribe gb-users-digest your_email_address Then unsubscribe from this list. ------------------------------------------------------------- GNAT Box User Forum http://www.gnatbox.com/cgi-bin/Ultimate.cgi Send postings to: [EMAIL PROTECTED] Access the list archives at: http://www.gnatbox.com/gb-users/ ------------------------------------------------------------- Well, for starters I'll ask this... If you are going to allow access to your internal network from your PSN, why do you have a PSN? I know there are many valid answers for this, but its a question you need to ask yourself. In response to your actual question, you need to use IP Passthrough filters. Chris Green From: "Edward Ingram" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Subject: How to allow access from PSN to PROT Date: Sat, 20 Oct 2001 16:27:32 -0700 What do I need to allow this access? I read somewhere that to allow this, I need a tunnel and a filter. I've looked at my current tunnels, which I use to redirect external requests for "real" ips to internal "private" ips, which is the normal usage. But what would I put in for a tunnel to allow, say 192.168.1.0/24 to access 192.168.0.0/24? Ed Edward Ingram Network/Systems Administrator Payment Resources, Intl. [EMAIL PROTECTED] (949) 729-1400 (949) 729-1178 FAX _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp ---------------------------------------------- To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe gb-users your_email_address in the body of the message
