---------
router 192.168.10.1 (255.255.255.0)
---------
|
|
---------------
external switch
---------------
|
|
----------------------------------
Firewall 1 (ip 192.168.10.2
----------------------------------
| |
| |
172.17.1.254 172.16.1.254
| |
----------- -----------------
Internal switch DMZ switch
(FWXT_HIDE) (FWXT_SRC_STATIC and FWXT_DST_STATIC)
---------- -----------------
| | | | | |
pc1 pc2 pc3 srvr1 srvr2 srvr3
pc1 IP is 172.17.1.1 external address is 192.168.10.3
pc2 IP is 172.17.1.1 external address is 192.168.10.3
pc2 IP is 172.17.1.1 external address is 192.168.10.3
srvr1 IP is 172.16.1.1 external address is 192.168.10.4
srvr2 IP is 172.16.1.2 external address is 192.168.10.5
srvr3 IP is 172.16.1.3 external address is 192.168.10.6
Now on the Cisco external router have
ip route 192.168.10.3 192.168.10.2
ip route 192.168.10.4 192.168.10.2
ip route 192.168.10.5 192.168.10.2
ip route 192.168.10.6 192.168.10.2
and so on... (to route the traffic back to the Firewall)
Now my problem is the ISP doesn't want to force the routes on the router.
I how can I get around this.... (all the 254 IP address will be on the
external switch)
can I arp the entries on the Firewall for 192.168.10.3 ... 192.168.10.6
or maybe bring up virtual ip on the external interface
Thanks
Bikesh
[EMAIL PROTECTED]
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
