Hi, I just implemented a StoneBeat fullcluster on two Solaris 7 running checkpoint ver4.1 SP3 using mlticast MAC address. The internal LAN is a FDDI ring connected to a Cisco 5002 (FDDI brigde) and then to two different Cisco 6509 catalyst switches before reaching the firewall. "set cam" is done on all these switches and arp static entry are added to the router. A client machine from a DMZ segment is able to ping to a server in the FDDI ring. However when the Client try to establish a TCP connections to the server (sync packet), the server reply with a reset packet. This problem is overcome when we add a route in the server to point all return traffic to one firewall instead of the cluster IP address. Does anyone have encounter similiar problem like this? Regards, Jit ____________________________________________________________ Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
