Massimiliano usually you should configure just a default gateway which route
your packets to the public internet, therefore you must explain to us where
is your partner's router and where is the new one.
Anyway I think that you must configure some source traffic rules on your
default gateway (something like route map on cisco)to redirect the taffic
generate from your new net to the new router...so that the default gateway
for your SPLAT remain the same.
I hope that help.
--
Paolo Riviello
Home: http://www.paoloriviello.com
E-mail: [EMAIL PROTECTED]
E-mail: [EMAIL PROTECTED]
Skype: pao_rivi Icq: 285354822
If men could get pregnant, abortion would be a sacrament. (H)
From: Scarpati Massimiliano <[EMAIL PROTECTED]>
Reply-To: Mailing list for discussion of Firewall-1
<[email protected]>
To: [email protected]
Subject: [FW-1] Routing...
Date: Wed, 17 Jan 2007 16:50:12 +0100
Hi guys, i'm a beginner about checkpiont than be patient....
I have an R55 HFA18 Enforcment Module Secure Platform and a management
R55 HFA18 on Windows. On my Enforcment now I have 3 ethernet:
Eth0 Private Address......x.x.x.x (172.31.w.w)
Eth1 Private Address.....y.y.y.y (172.31.y.y)
Eth2 Private Address.....z.z.z.z (192.z.z.z)
Now on my SPLAT I have some route to particular IP address and I have a
default ROUTE that teach my Splat to route all the packets from my LAN
(Eth1) to a public IP Address (a Router of a partner that give me the
connectivity to Internet not managed by me)
I want implement another network to publish some services, than on the
Enforcment I add a new Ethernet
Eth3 (172.16.h.h)
Now my lan Eth1 y.y.y.y go to internet via the Router of my partner.
I have another Router with a public IP address and I want publish my new
machines in the IP class 172.16.h.h via this Router.
My question is... it's possible configure my Enforcment to Route all the
packet coming from 172.16.h.h, and only these, and that have destination
public IP Addresses, to this Router?
I Want continue to route the packets coming from my lan Eth1
(172.31.y.y) to the Router of my partner and than route all coming from
my new Eth3 (172.16.h.h) to the new Public IP.
If it is possible and someone has similar config suggest me the way to
do this.
Thanks.
Mazzz
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
_________________________________________________________________
Usa il tuo PC come un telefono per chiamare cellulari e telefoni fissi!
http://imagine-msn.com/messenger/launch80/?locale=it-it&TAB=2
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
