kk downing wrote: > Hello, > I have the following line in my config in order that > the internal hosts(10.0.0.0 net) do not get NAT'd when > trying to access hosts on our DMZ segment: > > static (inside, DMZ) 10.0.0.0 10.0.0.0 netmask > 255.255.255.0 0 0 > > Now if I try to ssh from hostA(10.0.0.2) to > hostB(10.0.0.3) I will get the following error logged > on the PIX: > > 106001: Inbound TCP connection denied from > 10.0.0.2/1740 to 10.0.0.3/22 flags SY > N on interface DMZ
i think, there is something wrong at your network configuration. best would be publishing the whole configuration. at this few lines we only can guess. hostA and hostB are in the same network, but at different interfaces? what did you do? redards dirk -- ISION Internet AG Dirk Pfau IP Network / iSecurity Harburger Schlossstr. 1 D-21079 Hamburg Fon: +49 40 77175-538 eMail: [EMAIL PROTECTED] Web: http://www.ision.net _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] For Account Management (unsubscribe, get/change password, etc) Please go to: http://lists.gnac.net/mailman/listinfo/firewalls
