Richard, I am doing a manual static NAT (also tried with auto static NAT before). The global IP address of the outer NIC card of the FW is not the same as the NAT-ed IP address of the Exchange server. I I created a local.arp file and also did 'route add' with '-P' option. Tell me where should be the problem. thanks James >From: Richard Pitcock <[EMAIL PROTECTED]> >To: 'Patrick James' <[EMAIL PROTECTED]> >Subject: RE: FW1 is letting the traffic out but not the port starts 'liste >ning'.... >Date: Sun, 10 Jun 2001 19:20:33 -0400 > >Are you doing a static network address translation for the internal >exchange >server (as opposed to hidden). If so is it an address other than the one >your using for outbound traffic. Do you have the arp entry in fw-1 and >static persistent route statement in NT. > >Rich > >-----Original Message----- >From: Patrick James [mailto:[EMAIL PROTECTED]] >Sent: Sunday, June 10, 2001 10:53 AM >To: [EMAIL PROTECTED] >Cc: [EMAIL PROTECTED] >Subject: FW1 is letting the traffic out but not the port starts >'listening'.... > > >Hi, >I have a FW1 version 4.1 SP2 installation on WinNT 4.0 SP6. My network is a >simple one where I have couple of servers on the LAN and a Router, the FW1 >pretty sits between the LAN Servers and the Router. I configured the proper >NAT and security policy settings absolutely no problem with that. > >The firewall's SMTP port is not 'listening' on behalf of the internal >Exchange mail server even though I staticaly NAT-ed it with a global IP >addrs. I tried telnet-ing it, but it doesn't go through, but I could browse >from this exchange server. I could even telnet port 25 of DMZ's NIC card of >Exchange server, showing the service is running perfect. > >I could find the mails flowing out my network to hotmail.com but not the >other way. The current security policy is 'all-all-all'. Any helpers >please.... > >thanks >James >_________________________________________________________________________ >Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. > >- >[To unsubscribe, send mail to [EMAIL PROTECTED] with >"unsubscribe firewalls" in the body of the message.] _________________________________________________________________________ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
