Microsoft says that the problem will be solved in SP3.
Now I'm using the "fwparp" utility to publish the proxy arp addresses and is working fine.
By the way I put the local.arp file inside CONF directory, and it's not working.
Teddy Mercado
At 09:08 a.m. 01/04/02 -0500, you wrote:
This is a known bug with Check Point. I ran into this and basically was told to use a local.arp file in the $FWDIR\conf directory (which works). Check the release notes for FP2 when it comes out to see if it fixes the problem.
Daniel R. Mengel
GSEC, MCSE, CCSE
Lead Technologist - Data Security
Info Systems, Inc. - www.infosysinc.com
- -----Original Message-----
- From: Michael Rowland [mailto:[EMAIL PROTECTED]]
- Sent: Wednesday, March 27, 2002 5:59 PM
- To: [EMAIL PROTECTED]
- Subject: Re: [FW-1] Automatic ARP on Windows 2000
- I had the same problem. I ended up using the fwparp utility from Checkpoint.
- -----Original Message-----
- From: Teddy Victor, Mercado Rodrigo [mailto:[EMAIL PROTECTED]]
- Sent: Wednesday, March 27, 2002 1:07 PM
- To: [EMAIL PROTECTED]
- Subject: Re: [FW-1] Automatic ARP on Windows 2000
- Tom and Haim
- Yes, I'm using only automatic NAT rules. But automatic ARP is not working.
- That is my problem.
- :-)
- Regards
- Teddy
- At 10:49 a.m. 27/03/02 +0000, you wrote:
- Exactly :0)
- -----------------------------------
- Tom Rowan
- BSc (Hons), CCSE+, CCNA..
- Security Consultant
- Security Alchemy Ltd.
- T: +44 (0) 7773 387 997
- W: http://www.securityalchemy.net/
- -----------------------------------
- -----Original Message-----
- From: Haim Chibotero [mailto:[EMAIL PROTECTED]]
- Sent: 27 March 2002 10:26
- To: [EMAIL PROTECTED]
- Subject: Re: [FW-1] Automatic ARP on Windows 2000
- The automatic arp is working only for automatic nat rules !!!
- Haim Chibotero
- IT Manager
- MaxBill
- *Tel: +972-3-9114000
- *Fax: +972-3-9114001
- *Mobile:+972-54-930384
- *E-mail:[EMAIL PROTECTED]
- -----Original Message-----
- From: Tom Rowan [mailto:[EMAIL PROTECTED]]
- Sent: Wednesday, March 27, 2002 10:28
- To: [EMAIL PROTECTED]
- Subject: Re: [FW-1] Automatic ARP on Windows 2000
- Did you use Automatic or manual NAT?
- -----------------------------------
- Tom Rowan
- BSc (Hons), CCSE+, CCNA..
- Security Consultant
- Security Alchemy Ltd.
- T: +44 (0) 7773 387 997
- W: http://www.securityalchemy.net/
- -----------------------------------
- -----Original Message-----
- From: Teddy Victor, Mercado Rodrigo [mailto:[EMAIL PROTECTED]]
- Sent: 26 March 2002 21:58
- To: [EMAIL PROTECTED]
- Subject: [FW-1] Automatic ARP on Windows 2000
- Hello everybody,
- I installed three NG firewall modules (FP1) on Windows 2000, in a
- distributed way, with the management module also on windows 2000, also, I
- configured the automatic static NAT in the objects NAT dialog box and the
- automatic ARP configuration in global properties dialog box.
- The NAT is working very well but the automatic ARP is not.
- The command FW CTL ARP shows an empty ARP table, so the return packet
- doesn't reach the external interface of the firewall module.
- I installed other firewall module on LINUX and the automatic ARP works fine.
- Does anyone has an idea about why automatic ARP is not working on Windows
- 2000? Do I need configure something else in FW-1 or windows 2000?
- Suggestions?
- Best regards.
- Teddy
- =================================================
- To set vacation, Out Of Office, or away messages,
- send an email to [EMAIL PROTECTED]
- in the BODY of the email add:
- set fw-1-mailinglist nomail
- =================================================
- To unsubscribe from this mailing list,
- please see the instructions at
- http://www.checkpoint.com/services/mailing.html
- =================================================
- If you have any questions on how to change your
- subscription options, email
- [EMAIL PROTECTED]
- =================================================
- =================================================
- To set vacation, Out Of Office, or away messages,
- send an email to [EMAIL PROTECTED]
- in the BODY of the email add:
- set fw-1-mailinglist nomail
- =================================================
- To unsubscribe from this mailing list,
- please see the instructions at
- http://www.checkpoint.com/services/mailing.html
- =================================================
- If you have any questions on how to change your
- subscription options, email
- [EMAIL PROTECTED]
- =================================================
- =================================================
- To set vacation, Out Of Office, or away messages,
- send an email to [EMAIL PROTECTED]
- in the BODY of the email add:
- set fw-1-mailinglist nomail
- =================================================
- To unsubscribe from this mailing list,
- please see the instructions at
- http://www.checkpoint.com/services/mailing.html
- =================================================
- If you have any questions on how to change your
- subscription options, email
- [EMAIL PROTECTED]
- =================================================
- =================================================
- To set vacation, Out Of Office, or away messages,
- send an email to [EMAIL PROTECTED]
- in the BODY of the email add:
- set fw-1-mailinglist nomail
- =================================================
- To unsubscribe from this mailing list,
- please see the instructions at
- http://www.checkpoint.com/services/mailing.html
- =================================================
- If you have any questions on how to change your
- subscription options, email
- [EMAIL PROTECTED]
- =================================================
- __________________________
- Ing. Teddy Victor, Mercado Rodrigo
- Div. Comunicaciones
- PROCOM S.R.L.
- email:
[EMAIL PROTECTED] [EMAIL PROTECTED] - Tel. ++591 3 3360802 / 3322366
- Fax. ++591 3 3360803
- BO
LIVIA
- "cuidate, ..... para no terminar siendo lo que eres" (Goethe)
- "si no eres parte de la solucion, eres parte del problema"
Ing. Teddy Victor, Mercado Rodrigo
Div. Comunicaciones
PROCOM S.R.L.
email:
Tel. ++591 3 3360802 / 3322366
Fax. ++591 3 3360803
BOLIVIA
"cuidate, ..... para no terminar siendo lo que eres" (Goethe)
"si no eres parte de la solucion, eres parte del problema"
