Off topic, this is a Checkpoint FW-1 mailing list. MTo -----Original Message----- From: Mike Alexander Sauvain [mailto:[EMAIL PROTECTED]] Sent: Monday, June 05, 2000 12:51 PM To: Firewall Mailing; [EMAIL PROTECTED] Subject: [FW1] Real IP howto ? sorry, but anyone can help me ? *REPOST* hello volks;), my questions: how i can use real ips ? to say, 1. i'm sure that my isp routes to me 2. ip masquerading works fine like my follow image cable | ------ eth0, real isp ip firewall ------- eth1,192.168.0.1 | | | some masquerades surfstations, works fine realip, some real ip servers ?? now, my quest's: 1. what i should configure out to use real ips behind my fire ? 1a. must the subnet be the same oh eth0 & eth1 ? 2a. should i masquerade the real ip net to ? my firewall setup (suse 6.4): FW_LOG_ACCEPT_CRIT="yes" FW_LOG_DENY_ALL="yes" FW_DEV_WORLD="eth0" FW_DEV_INT="eth1" FW_ROUTE="yes" FW_MASQUERADE="yes" FW_MASQ_NETS="62.0.70.0/24 192.168.0.0/24" #? should i masquerade the real ip net to ?? FW_MASQ_MODULES="autofw cuseeme ftp mfw portfw vdolive" FW_SERVICE_DHCPD="no" FW_SERVICES_EXTERNAL_TCP="22" FW_SERVICES_INTERNAL_TCP="22 10000" FW_SERVICES_INTERNAL_UDP="" FW_SERVICES_TRUSTED_NETS="62.0.70.0/24 192.168.0.0/24" # ?right like this ? FW_ALLOW_INCOMING_HIGHPORTS_TCP="yes" FW_ALLOW_INCOMING_HIGHPORTS_UDP="yes" FW_ALLOW_PING_FW="yes" FW_SERVICE_DNS="no" thanks ..... mike - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.] ============================================================================ ==== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ============================================================================ ==== ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
