sorry, i gave this some thought and it might be a little bit more complicated. i think the best option would be to have the following:
lan connected to firewall. firewall outside int connects to a router with 2x eth ports and 1x ser port. one eth port into firewall and other into adsl router. ser line to isp. on the lan side you'll have the same default gateway...the firewall. you'll have a static route, to route the adsl user lan ip(Y) to an ip address that is on the adsl eth range(X). on the the router you'll do policy based routing. something along the lines of when a packet comes from X, the lan_adsl_user's nat address, pump the packet out on the adsl port, if it's anything else, use the default gateway, which is the serial port. you will also have to add either a static route on the router for ip address X to get back to the firewall or do a proxy arp on the firewall for ip address X. sorry i'm in a bit of a hurry. so let me know if it doesn't make any sense. cheers andre' On Fri, 27 Sep 2002, [iso-8859-1] Carlos Lopez wrote: > Thanks Andre, but one more question, what default > route have I to configure int he internal machine ?? > Firewall or ADSL?. > > --- andre <[EMAIL PROTECTED]> escribi�: > You > should be able to do this based on nat > > configuration. you can add a > > static nat entry that will nat the internal machine > > to an ip that is > > valid on your adsl interface. > > > > just a thought > > > > andre' > > > > On Fri, 27 Sep 2002, [iso-8859-1] Carlos Lopez > > wrote: > > > > > Hi all, > > > > > > I have a nokia ip330 with ipso 3.5fcs7 ant NG > > FP2 > > > installed with five nic cards. One to internet, > > > another to lan, another to dmz1, another to dmz2 > > and > > > another to an ADSL router. My question is: Is it > > > possible to make only one machine in the internal > > > network use the ADSL to surf the net instead the > > > default route without using BGP or OSPF, etc??. Is > > it > > > possible to do this with firewall NG rules ???. > > > > > > > > > Thank you very much and sorry for my poor english. > > > > > > > > > > > > _________________________________________________________ > > > Do You Yahoo!? > > > Informaci�n de Estados Unidos y Am�rica Latina, en > > Yahoo! Noticias. > > > Vis�tanos en http://noticias.espanol.yahoo.com > > > > > > ================================================= > > > To set vacation, Out Of Office, or away messages, > > > send an email to [EMAIL PROTECTED] > > > in the BODY of the email add: > > > set fw-1-mailinglist nomail > > > ================================================= > > > To unsubscribe from this mailing list, > > > please see the instructions at > > > http://www.checkpoint.com/services/mailing.html > > > ================================================= > > > If you have any questions on how to change your > > > subscription options, email > > > [EMAIL PROTECTED] > > > ================================================= > > > > > > > ================================================= > > To set vacation, Out Of Office, or away messages, > > send an email to [EMAIL PROTECTED] > > in the BODY of the email add: > > set fw-1-mailinglist nomail > > ================================================= > > To unsubscribe from this mailing list, > > please see the instructions at > > http://www.checkpoint.com/services/mailing.html > > ================================================= > > If you have any questions on how to change your > > subscription options, email > > [EMAIL PROTECTED] > > ================================================= > > _________________________________________________________ > Do You Yahoo!? > Informaci�n de Estados Unidos y Am�rica Latina, en Yahoo! Noticias. > Vis�tanos en http://noticias.espanol.yahoo.com > > ================================================= > To set vacation, Out Of Office, or away messages, > send an email to [EMAIL PROTECTED] > in the BODY of the email add: > set fw-1-mailinglist nomail > ================================================= > To unsubscribe from this mailing list, > please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================= > If you have any questions on how to change your > subscription options, email > [EMAIL PROTECTED] > ================================================= > ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
