I don't know much about Netscreen, but this is a common
issue with other firewalls. There are a few things you
can try:
-On the router in front of the Netscreen, put a static
route for all of the other IPs to point to the Netscreen.
On a Cisco you would want:
ip route x.x.x.251 255.255.255.255 x.x.x.250
ip route x.x.x.252 255.255.255.255 x.x.x.250
etc.
-Add static ARP entries to the Netscreen with all of the
other IPs pointing to the actual MAC address of the Netscreen's
external interface.
-Do the same as above but on the external router rather than
the Netscreen.
Carl
> -----Original Message-----
> From: Mandy Andress [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, August 08, 2000 10:40 PM
> To: [EMAIL PROTECTED]
> Subject: Netscreen Map IP
>
>
> I am having issues with the Netscreen Map IP function. I
> have a range of 6
> IP addresses from my ISP. I have one IP used as the
> untrusted interface on
> the Netscreen (x.x.x.250). I want to use some of the other available
> public IP addresses to map to internal servers on a private
> subnet. If I
> map the x.x.x.250 ip address to an internal server, it can be
> accessed just
> fine from the Internet. If I map one of the available IPs, such as
> x.x.x.251 to an internal server, a user on the Internet
> cannot connect to
> it. This seems like a routing issue to me, but we had a Sonicwall
> configured this same way and did not have any problems. What
> am I missing?
>
> Thanks,
> Mandy
>
>
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> Mandy Andress CISSP, CISA, CPA
> President and Founder
> ArcSec Technologies, Inc.
> 35 Rock Harbor Lane
> Foster City, CA 94404
> T: 650-208-0984
> F: 650-745-1357
> [EMAIL PROTECTED]
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>
>
> _________________________________________________________
> Do You Yahoo!?
> Get your free @yahoo.com address at http://mail.yahoo.com
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
