Thx Ray and all who replied.
I've managed to get it working.
Basically I've removed the ip aliases and use the arp table instead.
Then I add the static route as recommended.
Next I deleted all the rules/objects and recreated them.
Rgds,
Kok-Hong
-----Original Message-----
From: Ray Lodato [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 04, 2001 8:53 PM
To: 'Kok-Hong'; Fw-1-Mailinglist
Subject: RE: [FW1] NAT on PDS2100
Have you added a static route on the PDS 2100 for the external ip routing it
to the internal ip? Firewall-1 does the routing BEFORE it translates the ip
address.
Ray Lodato
NEF Information Services
617-578-3197
[EMAIL PROTECTED]
-----Original Message-----
From: Kok-Hong [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 30, 2001 11:20 PM
To: Fw-1-Mailinglist
Subject: [FW1] NAT on PDS2100
Hi I've been trying unsuccessfully to configure 1 to 1 NAT on the
PDS2100-FW1/VPN1 SmallOffice.
Layout:
ext ip + ip alias -- FW -- internal IP -- HUB/SWITCH -- Internal HOST
Configured Network Object-
Internal HOST to allow STATIC NAT for Internal HOST to ip alias
Default policy allow all.
Default properties to apply on all traffic (inbound/outbound)
Internal host default gw is FW
Outgoing traffic is ok but no success with incoming traffic. ie Internal
host can access internet. But unable to access Internal HOST via External
IP.
What could I have missed out??
All comments appreciated.
Rgds,
Kok-Hong
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
