Patient: Doctor! It hurts when I do this!
Doctor: Then don't do that.
Set your internal DNS server to point www.companyname.com to 10.2.3.3 and
stop trying to make it work the hard way.
- Jeff Younker - [EMAIL PROTECTED] - These are my opinions, not MDL's -
-----Original Message-----
From: Parthiv Shah [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, November 02, 1999 1:07 PM
To: [EMAIL PROTECTED]
Subject: Question: NAT on solaris 2.6
Hello,
I have setup a Check point firewall on Solaris 2.6 and this is how I am
doing NAT for my web server.
i.e. 1.2.3.4 is in bound ip and 10.2.3.3 is out of bound ip.
I created arp entry and static route for 1.2.3.4 on the fw.
Also, I created a rule for NAT on the fw.
By doing all of the above when users from Internet go to
http://www.companyname.com the rule is working fine and the users are going
to the appropriate web server (My dns for the web is pointing to the in band
ip address 1.2.3.4.)
But when users from inside the fw (who are on the segment 10.2.3.x) trying
to connect to the website the DNS is resolving to IP 1.2.3.4 and they are
trying to connect to webserver and it is FAILING. On the other hand if they
put IP of 10.2.3.3 in there URL it's working fine. Any idea? thoughts? May
be there should be some special trick for DNS side or something?
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
