> I am obviously new to this so hang with me. The Public interface is my > 12.xx.xx.xx. The servers that my firewall are protecting are on the > 66.xx.xx.xx. The ip range in my NAT pool are in the 66. range. The ARP > entry I added is 66.xx.xx.xx and I used the MAC address of the 66. > interface. Is this correct? It sounds as if you are doing everything correctly.
Have you tried tracerouting to an IP address from the Pool to make sure that the routing is correct? Also, if the firewall has a correct ARP entry for the Pool address, you should be able to ping the pool address (assuming you allow it temporarily in your security policy). If this does not work then the traffic may nto even be getting to the firewall. Do you have a traffic dump to show us that might shed soem light on what is happening? -Don ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
