You can do it this way. I cannot correct you configuration if you are not more specific. Although it is difficult how you subnetted 13 IPs.
Did you think of configuring the router in front of the firewall, routing the second subnet to the firewall? Does the server in DMZ have the firewall as default gateway? To trouble shoot your issue some network trafic analysis could be usefull, did you think of installing windump? Bye for now Christian ALT Telecom and Logistics Associates Network and Security Company Firewall-1 FAQ http://www.tla.ch/TLA/FW/FW1FAQ.html -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] Behalf Of Trent Libby Sent: lundi, 26. janvier 2004 17:37 To: [EMAIL PROTECTED] Subject: [FW-1] Setting up DMZ with Win 2000 Server I have been tinkering with my Checkpoint firewall trying to get a DMZ setup with Valid IP's. I have a total of 13 Valid IPs and I need to have one of my server's setup in the DMZ with a valid IP. In trying to do this I split my Valid IPs into two subnets and assigned the 3rd NIC on the Checkpoint Server to the first valid in the second subnet I created and then assigned the server in the DMZ with the next IP in that subnet, but it is not working and I must be missing something with the route setup in Win 2000 or something. First of all is this the best way to do this for Valid IPs on Checkpoint and secondly what am I missing to possibly get this working. Thanks, Trent ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= --- Incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.564 / Virus Database: 356 - Release Date: 19.01.2004 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.564 / Virus Database: 356 - Release Date: 19.01.2004 ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
