Hi Andy,
> Firewall - 1 can perform proxy arp. Within the state directory
> create a file called local.arp containing the IP address of the host
> you wish to communicate with and the mac address of the LAN interface
[...]
> In the past this has either worked imeadiatly or not at all. If it]
> fails to work use the arp command on NT to pop the information onto
> the box.
First, usually if this fails to work, it's because the user put spaces instead
of a TAB to separate the IP and MAC addresses. It's a common thing to just use
spaces, and nowhere does Check Point document that it has to be a TAB.
I am also curious as to how you get the arp command in NT to do proxy ARP? I
thought the whole reason for local.arp in NT is the fact that NT's arp command
doesn't support the "pub" option, and therefore prevents it from doing proxy
arp. Side note: I'm very annoyed that Microsoft didn't include it in Windows
2000 either. Granted, the RFC doesn't specify that you have to have it, but
everyone else does, so to me it's a de facto standard anyway...
----------------------------------------------------------------
Mark Boltz Stonesoft, Inc.
Network Security Specialist 115 Perimeter Center Place
[EMAIL PROTECTED] South Terraces, Suite 1000
Tel: +1 770 668 1125 Atlanta, GA 30346
Cel: +1 404 386 8500 USA
Fax: +1 770 668 1131 http://www.stonesoft.com
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
