Since you are using hide nat between the networks (meaning the client network can access the file shares but not the other way around) you are not just using it as a router. I'm not sure on what caused this problem for you, but for me it was hide nat since day one. Static is working for a month now and no problems so far. Maybe you have more tcp sessions now than you had before? I know there's a way to increase the session table, I just don't know how. I would suspect you have way too many sessions open and you are running out of table "space". Also check your stateful inspection options on tcp and also check timeout settings for your nbsession service. Mine is set to default at 3600 seconds for both.
Hope this helps. Regards. Jo�o. On Fri, 19 Nov 2004 09:04:35 -0800, Lyle Dove <[EMAIL PROTECTED]> wrote: > Very odd. I've been using hide NAT since the day it was installed, and no > problems. Keep in mind that these 2 networks are internal networks in which > the firewall is basically acting as a router between the two. No other > routed segments exist behind each interface other than the single segment > defined on the FW. > > Thoughts? > > -Lyle > > > > > -----Original Message----- > From: Mailing list for discussion of Firewall-1 > [mailto:[EMAIL PROTECTED] On Behalf Of Joao Santos > Sent: Friday, November 19, 2004 7:59 AM > To: [EMAIL PROTECTED] > Subject: Re: [FW-1] Disconnected network shares > > Hi Lyle! I had this same problem, same config... I was using hiding NAT for > the other network. I had to use static nat to fix the problem. > > Hope this helps. > > Jo�o. > > On Fri, 19 Nov 2004 07:16:20 -0800, Lyle Dove <[EMAIL PROTECTED]> wrote: > > Hello, > > > > I have the following configuration > > > > Nokia IP380, IPSO 3.5.1, NG-AI FP3 > > > > We have a MS network in which we have mapped drives which traverse > > through the FW from one network to another. The problem is that after a > short > > period of time, the shares/mapped drives appear to timeout. Once we > > attempt to access the shares/drives again, it takes a few seconds for > > them to 're-sync' and then everything works fine again. If we go to > > the same network segment, and then map the drives, they work as > > expected, and don't timeout. Is there something in the FW > > configuration that I can check that may cause this? > > > > Thanks, > > > > -------- > > Beep! Beep! > > > > Lyle Dove > > BPS Senior Technician > > Time Warner Cable - Los Angeles Division > > > > "The information transmitted is intended only for the person or entity > > to which it is addressed and may contain confidential, proprietary, > > and/or privileged material. Any review, retransmission, dissemination > > or other use of, or taking of any action in reliance upon, this > > information by persons or entities other than the intended recipient > > is prohibited. If you received this in error, please contact the > > sender and delete the material from all computers." > > > > ================================================= > > To set vacation, Out-Of-Office, or away messages, send an email to > > [EMAIL PROTECTED] > > in the BODY of the email add: > > set fw-1-mailinglist nomail > > ================================================= > > To unsubscribe from this mailing list, please see the instructions at > > http://www.checkpoint.com/services/mailing.html > > ================================================= > > If you have any questions on how to change your subscription options, > > email [EMAIL PROTECTED] > > ================================================= > > > > ================================================= > To set vacation, Out-Of-Office, or away messages, send an email to > [EMAIL PROTECTED] > in the BODY of the email add: > set fw-1-mailinglist nomail > ================================================= > To unsubscribe from this mailing list, > please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================= > If you have any questions on how to change your subscription options, email > [EMAIL PROTECTED] > ================================================= > > ================================================= > To set vacation, Out-Of-Office, or away messages, > send an email to [EMAIL PROTECTED] > in the BODY of the email add: > set fw-1-mailinglist nomail > ================================================= > To unsubscribe from this mailing list, > please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================= > If you have any questions on how to change your > subscription options, email > [EMAIL PROTECTED] > ================================================= > ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
