[FW-1] routing issue

Thu, 25 Nov 2004 02:45:01 -0800 

Hi All,

I am configuring a Checkpoint Firewall NG FP3 on a Solaris box. I am having
some routing issues.

I have 2 internal networks. One is 192.168.10.x and the other one is
172.16.10.x.


          192.168.10.32              |------------------------------ |hme0
172.16.10.1
                                        eri0|
|------------------
                            -----------------|           FW               |

|-------------------------------|


As shown in the above figure, erio is 192.168.10.32 and hme0 is 172.16.10.1.
We have around 10 PC's in our LAN connected to 172.16.10.x segment. All the
PC's in 172.16.10.x can ping each other. But they can't ping any of the IP
addresses
in 192.168.10.x segment. They can't even ping 192.168.10.32.

I have added static route's for each of the 172.16.10.x IP's like

route add host 172.16.10.10 192.168.10.40 1

But still 172.16.10.10 can't ping 192.168.10.32 or any of the 192.168.10.x
IP's.

I have added rules like:

LAN-172--------->LAN-192--------------->ANY--------------->ACCEPT
LAN-192---------->LAN-172--------------->ANY-------------->ACCEPT

LAN-172 is the object for 172.16.10.0 LAN and LAN-192 for 192.168.10.0 LAN.

Could someone give me some suggestions to fix this problem. Basically I need
to configure the Firewall so that 192.168.10.x can talk to 172.16.10.x and
vice versa.

There is some routing issue here. But, I am not able to figure out the
problem. I would appreciate your help.

Thanks,
Rajesh.

_________________________________________________________________
SEEK: Now with over 50,000 dream jobs! Click here:
http://ninemsn.seek.com.au?hotmail

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================

Reply via email to