[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [FW1] local.arp
[ The following text is in the "iso-8859-1" character set. ]
[ Your display is set for the "US-ASCII" character set. ]
[ Some characters may be displayed incorrectly. ]
Don,
Just to let you know.. I have to have an "setarp.cmd" run on
login, to manually set the arp like you do. This is a pain
if the batch file does not run correctly.. but it works.
I often wonder if there is a way to get it to work without
the ARP -s blah blah blah crap.. I guess I will keep on wondering.
Joe Delio
Excel Communications
IT Department- Firewall Administrator
CCSA CCSE
Phone: 972-738-1364 FAX: 972-738-1889
E-mail: jdelio@excel.com
-----Original Message-----
From: Kenneth Knox [mailto:ken.knox@commandsys.com]
Sent: Monday, April 05, 1999 7:50 AM
To: 'donm@advent.org'; 'FW1'
Subject: RE: [FW1] local.arp
Don,
You do have the correct format for the local.arp file. How's your route
table look, you need to have specific routes from the NAT address to the
inside address. Also, make sure that the firewall knows that the addresses
in the local.arp file are allowable addresses on the inside interface.
Lastly, make sure that the clients you are doing the NAT's for know how to
get back to the firewall.
Hope this helps.
Ken Knox
Network Architect
Command Systems, Inc.
ken.knox@commandsys.com
-----Original Message-----
From: donm@advent.org [mailto:donm@advent.org]
Sent: Wednesday, March 31, 1999 6:04 PM
To: 'FW1'
Subject: [FW1] local.arp
I am running FW1 v4.0 SP1 (Build 4031) on NT4 SP4. I have created the
local.arp file in the /fw1/state/ directory, but it still does not seem to
work as advertised. I have three IP addresses that I want the external
interface to answer for besides it's own IP address. I have the appropriate
rules setup for NAT etc., but the only way to get the external interface to
answer those IP addresses is to manually add the addresses to the arp table
with an "arp -s x.x.x.x xx-xx-xx-xx-xx-xx".
I cannot find exactly what I am looking for. I saw something a few weeks
ago about the format of the local.arp file, but cannot find it now.
My local.arp looks like this:
x.x.x.4 xx-xx-xx-xx-xx-7F
x.x.x.40 xx-xx-xx-xx-xx-7F
x.x.x.41 xx-xx-xx-xx-xx-7F
Is the format of this correct? If so, why does it not work? If not
correct, what should it be? Or is this just another bug in the NT version
of FW1 V4.0..
To work around this problem for now, I am just using a startup script that
adds the arp -s entries after boot so I do not have to enter them by hand.
By the way I did find some info on www.phoneboy.com, but I did not find a
reference that stated the exact format of the local.arp file on NT (I would
make the assumption that it should be the same format on all operating
systems, but we all know that assumption is the mother of all screw-ups!.
Any help fixing this would be greatly appreciated!
Don Moore
Network Administrator
Advent Enterprises, Inc.
donm@advent.org
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================