Carlos,
Check that you have set up the the nat rule as static. the other thing to do
is check that the anti spoofing rules are not coming into play. is is any
thing showing up in the logs?
regards
-----Original Message-----
From: Carlos Infante [mailto:[EMAIL PROTECTED]]
Sent: Monday, 6 November 2000 7:57 PM
To: [EMAIL PROTECTED]
Subject: [FW1] NAT problem
**************************************************************
This message has been scanned for viruses.
**************************************************************
Hello all,
I have a problem with my NAT
I'm using a ftp server with a private address 10.x.x.x. because I want the
external users grant access to the machine I'm performing NAT with a
external IP in the subnet of the external interface of the firewall x.x.x. 4
for the firewall and x.x.x.5 for the NATed address of the ftp server.
I added the next line in the cache arp of the firewall module.
arp -d <ip NATed of the ftp server> <MAC address of the firewall> pub
also I added a line in the routing table of the firewall
route add <ip NATed op the ftp> <ip real of the ftp> 1
I can ping from the inside to the outside (this rule is only for testing and
I will disallow any kind of traffic from the dmz to anywhere) But when I
ping from the outside to the NATed address I can't access to the ftp server
(the think is I can ping to the external interface of the firewall)
Probably I missed anything but I can't find it.
Thanks in Advance
___________________________________
Carlos Infante Bello
Network Systems Engineer
NPS, Lucent Technologies
Ronda de Valdecarrizo, 6
28760 Tres Cantos (Madrid) Spain
Tel: +34 91 807 8221
Mobile: +34 646 485 207
e-mail: [EMAIL PROTECTED]
___________________________________
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
**********************************************************************
To stay up to date with the latest SecureNet news and events click on
the following link direct to our website www.securenet.com.au/news
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the system manager.
This footnote also confirms that this email message has been swept by
MIMEsweeper for the presence of computer viruses.
www.mimesweeper.com
**********************************************************************
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
