You need to make sure 'accept UDP replies' is checked in the configuration
or if it is not, create a rule like this:
LocalNET , DNS-servers , DNS , accepts
DNS-servers , LocalNET , DNS , accepts
I'd also change the rule to allow only DNS traffic to/from these machines...
I'll also assume here that you are NAT'ing the localnet correctly behind the
FW IP.
Patrick D. Baird
Senior Solutions Developer - MCSE
mVest Technology Solutions, Inc.
1700 Paoli Pike
Malvern, PA 19355
Wk: 610-407-0100 x305
Cl: 610-745-1839
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
