[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [FW1] local.arp
I noticed in the news groups a suggestion to create the local.arp with dos
edit. If I remember right, this was also mentioned in the CCS? course by
the instructor. Something about the eof not being written correctly with
notepad.
Kenneth Knox <ken.knox@commandsys.com> on 04/05/99 08:50:05 AM
Please respond to Kenneth Knox <ken.knox@commandsys.com>
To: "'donm@advent.org'" <donm@advent.org>, "'FW1'"
<fw-1-mailinglist@lists.us.checkpoint.com>
cc: (bcc: Stuart Irving/Markham/IBM)
Subject: RE: [FW1] local.arp
Don,
You do have the correct format for the local.arp file. How's your route
table look, you need to have specific routes from the NAT address to the
inside address. Also, make sure that the firewall knows that the addresses
in the local.arp file are allowable addresses on the inside interface.
Lastly, make sure that the clients you are doing the NAT's for know how to
get back to the firewall.
Hope this helps.
Ken Knox
Network Architect
Command Systems, Inc.
ken.knox@commandsys.com
-----Original Message-----
From: donm@advent.org [mailto:donm@advent.org]
Sent: Wednesday, March 31, 1999 6:04 PM
To: 'FW1'
Subject: [FW1] local.arp
I am running FW1 v4.0 SP1 (Build 4031) on NT4 SP4. I have created the
local.arp file in the /fw1/state/ directory, but it still does not seem to
work as advertised. I have three IP addresses that I want the external
interface to answer for besides it's own IP address. I have the
appropriate
rules setup for NAT etc., but the only way to get the external interface to
answer those IP addresses is to manually add the addresses to the arp table
with an "arp -s x.x.x.x xx-xx-xx-xx-xx-xx".
I cannot find exactly what I am looking for. I saw something a few weeks
ago about the format of the local.arp file, but cannot find it now.
My local.arp looks like this:
x.x.x.4 xx-xx-xx-xx-xx-7F
x.x.x.40 xx-xx-xx-xx-xx-7F
x.x.x.41 xx-xx-xx-xx-xx-7F
Is the format of this correct? If so, why does it not work? If not
correct, what should it be? Or is this just another bug in the NT version
of FW1 V4.0..
To work around this problem for now, I am just using a startup script that
adds the arp -s entries after boot so I do not have to enter them by hand.
By the way I did find some info on www.phoneboy.com, but I did not find a
reference that stated the exact format of the local.arp file on NT (I would
make the assumption that it should be the same format on all operating
systems, but we all know that assumption is the mother of all screw-ups!.
Any help fixing this would be greatly appreciated!
Don Moore
Network Administrator
Advent Enterprises, Inc.
donm@advent.org
===========================================================================
=
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
===========================================================================
=
====
===========================================================================
=====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
===========================================================================
=====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================