Christopher,
But does the client know how to get the packet back?
Look at the routing table on the client.
Robert
- -
Robert P. MacDonald, Network Engineer
e-Business Infrastructure
G o r d o n F o o d S e r v i c e
Voice: +1.616.261.7987 email: [EMAIL PROTECTED]
>>> "Christopher Cullan - Unikoan" <[EMAIL PROTECTED]> 8/22/00 3:36:24 PM >>>
>
>Well, this week seems to be my week on unexplained items...anyway here's the
>story:
>
>NT 4 SP5, CP 4.1 SP2 (as of today)
>Firewall is in lab environment.
>I'm testing NAT from one device on the external network (arbitrary in this
>case) to one device in the internal network.
>I'm using manually defined static NAT rules, i.e.:
>
>source_real (on external) to dest_fake (external subnet) >>>>
>fw_internal_int to dest_real
>
>ports are left untouched.
>
>I've defined a local.arp entry for dest_fake address and ARP caches on the
>test client show this to work.
>I've defined a static route on the FW dest_fake >>>> dest_real.
>
>There is also a hiding NAT rule for the internal network to go out the
>external network.
>
>When I perform a test PING, the logs show that the packet is accepted and
>translated but I get no reply.
>
>Any thoughts?
>
>Cheers,
>Chris
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
